๐Ÿ” CVE Alert

CVE-2026-5264

UNKNOWN 0.0

DTLS 1.3 ACK heap buffer overflow

CVSS Score
0.0
EPSS Score
0.2%
EPSS Percentile
40th

Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow.

CWE CWE-122
Vendor wolfssl
Product wolfssl
Published Apr 9, 2026
Last Updated Apr 10, 2026
Stay Ahead of the Next One

Get instant alerts for wolfssl wolfssl

Be the first to know when new unknown vulnerabilities affecting wolfssl wolfssl are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

wolfSSL / wolfSSL
0 < 5.9.1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/wolfssl/wolfssl/pull/10076

Credits

Sunwoo Lee, Korea Institute of Energy Technology (KENTECH) Seunghyun Yoon, Korea Institute of Energy Technology (KENTECH)