Vulnerabilities > Wolfssl > Wolfssl > 4.4.0

DATE CVE VULNERABILITY TITLE RISK
2021-01-06 CVE-2020-36177 Out-of-bounds Write vulnerability in Wolfssl
RsaPad_PSS in wolfcrypt/src/rsa.c in wolfSSL before 4.6.0 has an out-of-bounds write for certain relationships between key size and digest size.
network
low complexity
wolfssl CWE-787
critical
 10.0
10
2020-08-24 CVE-2020-24613 Improper Certificate Validation vulnerability in Wolfssl
wolfSSL before 4.5.0 mishandles TLS 1.3 server data in the WAIT_CERT_CR state, within SanityCheckTls13MsgReceived() in tls13.c.
network
wolfssl CWE-295
4.9
4.9
2020-08-21 CVE-2020-24585 Unspecified vulnerability in Wolfssl
An issue was discovered in the DTLS handshake implementation in wolfSSL before 4.5.0.
network
low complexity
wolfssl
5.0
5.0
2020-08-21 CVE-2020-15309 Race Condition vulnerability in Wolfssl
An issue was discovered in wolfSSL before 4.5.0, when single precision is not employed.
local
high complexity
wolfssl CWE-362
7.0
7.0
2020-08-21 CVE-2020-12457 Improper Input Validation vulnerability in Wolfssl
An issue was discovered in wolfSSL before 4.5.0.
network
low complexity
wolfssl CWE-20
5.0
5.0