wolfSSL/wolfssh

Direct Vulnerabilities

Known vulnerabilities in the https://github.com|wolfSSL/wolfssh package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
Out-of-bounds Write

[,5.9.2)
  • M
Improper Verification of Cryptographic Signature

[,5.9.2)
  • M
Improper Certificate Validation

[,5.9.2)
  • L
Integer Underflow (Wrap or Wraparound)

[,5.9.2)
  • L
Use of a Broken or Risky Cryptographic Algorithm

[,5.9.2)
  • H
Out-of-bounds Write

[,5.9.1)
  • M
Improper Certificate Validation

[,5.9.2)
  • M
Improper Authentication

[,5.9.2)
  • M
Use of a Broken or Risky Cryptographic Algorithm

[,5.9.2)
  • L
Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

[,5.9.2)
  • L
Improper Certificate Validation

[,5.9.2)
  • M
Improper Certificate Validation

[,5.9.2)
  • L
Out-of-bounds Write

[,5.9.2)
  • M
Improper Authentication

[,5.9.2)
  • L
Improper Verification of Cryptographic Signature

[,5.9.2)
  • M
Improper Validation of Integrity Check Value

[,5.9.2)
  • M
Improper Verification of Cryptographic Signature

[,5.9.2)
  • H
Improper Certificate Validation

[,5.9.2)
  • M
Out-of-bounds Read

[,5.9.2)
  • M
Improper Certificate Validation

[,5.9.2)
  • H
Improper Certificate Validation

[,5.9.2)
  • H
Out-of-bounds Write

[,5.9.2)
  • M
Improper Certificate Validation

[,5.9.2)
  • L
Incorrect Calculation

[,5.9.2)
  • L
Use After Free

[,5.9.2)
  • H
Improper Certificate Validation

[,5.9.2)
  • M
Improper Certificate Validation

[,5.9.2)
  • H
Improper Verification of Cryptographic Signature

[,5.9.2)
  • M
Out-of-bounds Read

[,5.9.2)
  • L
Reusing a Nonce, Key Pair in Encryption

[,5.9.2)
  • M
Use of a Broken or Risky Cryptographic Algorithm

[,5.9.2)
  • M
Timing Attack

[,5.9.2)
  • L
Buffer Over-read

[,1.5.0)
  • M
Out-of-bounds Read

[,1.4.22)
  • C
Improper Authentication

[,1.4.22)
  • L
Information Exposure

[,5.8.4)
  • L
Integer Underflow

[,5.8.4)
  • L
Improper Verification of Cryptographic Signature

[,5.8.4)
  • L
Information Exposure

[,5.8.4)
  • M
Improper Handling of Length Parameter Inconsistency

[,5.8.4)
  • L
Incorrect Conversion of Security Identifiers

[,5.8.4)
  • M
Improper Handling of Length Parameter Inconsistency

[,5.8.4)
  • M
Inadequate Encryption Strength

[,5.8.4)
  • C
Improper Authentication

[,1.4.21)
  • L
Out-of-bounds Write

[,1.4.21)
  • M
Observable Timing Discrepancy

[,5.6.6)
  • M
Information Exposure Through Discrepancy

[,5.7.2)
  • M
Inadequate Encryption Strength

[,5.7.2)
  • M
Missing Encryption of Sensitive Data

[,5.7.2)
  • H
Out-of-bounds Read

[,5.7.2)
  • C
Improper Authentication

[,1.4.17)
  • M
Integer Overflow or Wraparound

[,1.4.8-stable)