Homepage

wolfssl vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the wolfssl package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
CVE-2025-7394

<5.7.2-0.4
  • M
Information Exposure

<5.6.6-1.2
  • H
Arbitrary Code Injection

<5.7.0-0.3
  • H
Arbitrary Code Injection

<5.7.0-0.3
  • H
Out-of-bounds Read

<5.7.2-0.1
  • L
CVE-2024-5814

<5.7.2-0.1
  • L
CVE-2024-1544

<5.7.2-0.1
  • L
CVE-2024-5288

<5.7.2-0.1
  • L
CVE-2024-0901

<5.7.0-0.3
  • C
Out-of-bounds Read

<5.6.6-1.2
  • M
CVE-2023-6937

<5.6.6-1.2
  • L
Information Exposure

<5.6.6-1.2
  • H
Improper Certificate Validation

<5.5.4-2.1
  • C
Out-of-bounds Read

<5.5.3-1
  • M
CVE-2022-42961

<5.5.3-1
  • H
Out-of-bounds Write

<5.5.3-1
  • H
Improper Check for Unusual or Exceptional Conditions

<5.5.3-1
  • M
Allocation of Resources Without Limits or Throttling

<5.5.3-1
  • H
CVE-2022-34293

<5.5.3-1
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<5.1.1-1
  • M
Improper Certificate Validation

<5.2.0-1
  • H
Improper Certificate Validation

<5.2.0-1
  • C
Use of Insufficiently Random Values

<5.1.1-1
  • M
Insufficient Verification of Data Authenticity

<5.0.0-1
  • C
CVE-2021-37155

<5.0.0-1
  • M
Information Exposure

<4.6.0-1
  • H
Improper Certificate Validation

<4.6.0-3
  • C
Out-of-bounds Write

<4.6.0-1
  • M
Improper Certificate Validation

<4.5.0+dfsg-1
  • M
CVE-2020-24585

<4.5.0+dfsg-1
  • H
Race Condition

<4.5.0+dfsg-1
  • H
Improper Input Validation

<4.5.0+dfsg-1
  • M
Inadequate Encryption Strength

<4.4.0+dfsg-1
  • H
Use of a Broken or Risky Cryptographic Algorithm

<4.4.0+dfsg-1
  • M
CVE-2019-19960

<4.3.0+dfsg-1
  • H
Use of a Broken or Risky Cryptographic Algorithm

<4.3.0+dfsg-1
  • M
CVE-2019-19963

<4.3.0+dfsg-1
  • M
Missing Encryption of Sensitive Data

<4.2.0+dfsg-1
  • H
Out-of-bounds Write

<4.2.0+dfsg-3
  • M
Information Exposure

<4.1.0+dfsg-1
  • C
Out-of-bounds Read

<4.2.0+dfsg-1
  • C
Out-of-bounds Read

<4.1.0+dfsg-2
  • C
Out-of-Bounds

<4.1.0+dfsg-1
  • L
Out-of-bounds Write

<4.1.0+dfsg-1
  • M
Cryptographic Issues

<4.1.0+dfsg-1
  • H
Improper Certificate Validation

<3.4.8+dfsg-1
  • H
Improper Authentication

<3.4.8+dfsg-1
  • H
Improper Certificate Validation

<3.4.8+dfsg-1
  • M
Information Exposure

<3.15.3+dfsg-1
  • M
Information Exposure

<3.13.0+dfsg-1
  • M
Cryptographic Issues

<3.4.8+dfsg-1
  • C
Improper Certificate Validation

<3.12.0+dfsg-1
  • H
Out-of-Bounds

<3.10.2+dfsg-1
  • H
CVE-2017-8855

<3.12.0+dfsg-1
  • M
Information Exposure

<3.10.2+dfsg-1
  • M
Cryptographic Issues

<3.9.10+dfsg-1
  • M
Cryptographic Issues

<3.9.10+dfsg-1
  • M
Cryptographic Issues

<3.9.10+dfsg-1
  • H
Resource Management Errors

<3.9.10+dfsg-1
  • M
Improper Data Handling

<3.9.10+dfsg-1
  • L
Cryptographic Issues

<3.4.8+dfsg-1