Vulnerabilities > Wolfssl > Wolfssl > 5.2.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-27 | CVE-2024-5288 | Insecure Storage of Sensitive Information vulnerability in Wolfssl An issue was discovered in wolfSSL before 5.7.0. | 5.9 |
| 2024-02-20 | CVE-2023-6936 | Out-of-bounds Read vulnerability in Wolfssl In wolfSSL prior to 5.6.6, if callback functions are enabled (via the WOLFSSL_CALLBACKS flag), then a malicious TLS client or network attacker can trigger a buffer over-read on the heap of 5 bytes (WOLFSSL_CALLBACKS is only intended for debugging). | 9.1 |
| 2024-02-15 | CVE-2023-6937 | Unspecified vulnerability in Wolfssl wolfSSL prior to 5.6.6 did not check that messages in one (D)TLS record do not span key boundaries. | 5.3 |
| 2022-11-07 | CVE-2022-42905 | Out-of-bounds Read vulnerability in Wolfssl In wolfSSL before 5.5.2, if callback functions are enabled (via the WOLFSSL_CALLBACKS flag), then a malicious TLS 1.3 client or network attacker can trigger a buffer over-read on the heap of 5 bytes. | 9.1 |