CVE-2026-5466

UNKNOWN 0.0

wc_VerifyEccsiHash missing sanity check

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

1th

wolfSSL's ECCSI signature verifier `wc_VerifyEccsiHash` decodes the `r` and `s` scalars from the signature blob via `mp_read_unsigned_bin` with no check that they lie in `[1, q-1]`. A crafted forged signature could verify against any message for any identity, using only publicly-known constants.

CWE	CWE-347
Vendor	wolfssl
Product	wolfssl
Published	Apr 10, 2026
Last Updated	Apr 10, 2026

Stay Ahead of the Next One

Get instant alerts for wolfssl wolfssl

Be the first to know when new unknown vulnerabilities affecting wolfssl wolfssl are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

wolfSSL / wolfSSL

0 < 5.9.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/wolfssl/wolfssl/pull/10102

Credits

Calif.io in collaboration with Claude and Anthropic Research