Vulnerabilities

CVE-2026-5392

by Fred · 10/04/2026

Heap out-of-bounds read in PKCS7 parsing. A crafted PKCS7 message can trigger an OOB read on the heap. The missing bounds check is in the indefinite-length end-of-content verification loop in PKCS7_VerifySignedData().

More information : https://github.com/wolfssl/wolfssl/pull/10039

Similar

Tags: Cybersecurity Alert