Homepage

wolfssl vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the wolfssl package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
CVE-2025-11936

*
  • L
CVE-2025-11932

*
  • L
CVE-2025-11931

*
  • L
CVE-2025-11933

*
  • L
CVE-2025-12888

*
  • L
CVE-2025-11935

*
  • L
CVE-2025-12889

*
  • L
CVE-2025-11934

*
  • L
CVE-2024-5288

<5.7.2-0.1
  • L
Information Exposure

<5.6.6-1.2
  • M
Allocation of Resources Without Limits or Throttling

<5.5.3-1
  • M
Information Exposure

<5.6.6-1.2
  • H
Out-of-bounds Read

<5.7.2-0.1
  • L
CVE-2025-7394

<5.7.2-0.4
  • M
Cryptographic Issues

<3.9.10+dfsg-1
  • H
CVE-2017-8855

<3.12.0+dfsg-1
  • M
Information Exposure

<4.6.0-1
  • L
CVE-2024-0901

<5.7.0-0.3
  • H
CVE-2022-34293

<5.5.3-1
  • H
Resource Management Errors

<3.9.10+dfsg-1
  • H
Out-of-bounds Write

<4.2.0+dfsg-3
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<5.1.1-1
  • M
CVE-2019-19963

<4.3.0+dfsg-1
  • H
Improper Authentication

<3.4.8+dfsg-1
  • C
Out-of-bounds Read

<5.6.6-1.2
  • M
Inadequate Encryption Strength

<4.4.0+dfsg-1
  • L
Out-of-bounds Write

<4.1.0+dfsg-1
  • M
CVE-2019-19960

<4.3.0+dfsg-1
  • C
Out-of-bounds Read

<4.1.0+dfsg-2
  • M
Improper Certificate Validation

<5.2.0-1
  • H
Out-of-Bounds

<3.10.2+dfsg-1
  • M
Cryptographic Issues

<4.1.0+dfsg-1
  • M
CVE-2022-42961

<5.5.3-1
  • M
CVE-2020-24585

<4.5.0+dfsg-1
  • C
Out-of-bounds Write

<4.6.0-1
  • L
Cryptographic Issues

<3.4.8+dfsg-1
  • H
Improper Certificate Validation

<3.4.8+dfsg-1
  • M
Cryptographic Issues

<3.4.8+dfsg-1
  • H
Arbitrary Code Injection

<5.7.0-0.3
  • H
Arbitrary Code Injection

<5.7.0-0.3
  • C
Out-of-bounds Read

<5.5.3-1
  • M
Insufficient Verification of Data Authenticity

<5.0.0-1
  • H
Use of a Broken or Risky Cryptographic Algorithm

<4.3.0+dfsg-1
  • M
Information Exposure

<3.15.3+dfsg-1
  • M
Cryptographic Issues

<3.9.10+dfsg-1
  • C
Use of Insufficiently Random Values

<5.1.1-1
  • H
Improper Check for Unusual or Exceptional Conditions

<5.5.3-1
  • M
Cryptographic Issues

<3.9.10+dfsg-1
  • H
Improper Certificate Validation

<5.5.4-2.1
  • C
CVE-2021-37155

<5.0.0-1
  • H
Improper Certificate Validation

<5.2.0-1
  • L
CVE-2024-5814

<5.7.2-0.1
  • M
CVE-2023-6937

<5.6.6-1.2
  • C
Out-of-Bounds

<4.1.0+dfsg-1
  • C
Improper Certificate Validation

<3.12.0+dfsg-1
  • C
Out-of-bounds Read

<4.2.0+dfsg-1
  • M
Information Exposure

<3.10.2+dfsg-1
  • M
Improper Certificate Validation

<4.5.0+dfsg-1
  • H
Improper Certificate Validation

<3.4.8+dfsg-1
  • M
Improper Data Handling

<3.9.10+dfsg-1
  • M
Missing Encryption of Sensitive Data

<4.2.0+dfsg-1
  • H
Out-of-bounds Write

<5.5.3-1
  • L
CVE-2024-1544

<5.7.2-0.1
  • H
Improper Certificate Validation

<4.6.0-3
  • H
Use of a Broken or Risky Cryptographic Algorithm

<4.4.0+dfsg-1
  • M
Information Exposure

<4.1.0+dfsg-1
  • H
Race Condition

<4.5.0+dfsg-1
  • M
Information Exposure

<3.13.0+dfsg-1
  • H
Improper Input Validation

<4.5.0+dfsg-1