Back to CVE List

CVE-2026-5500

Vulnerability Description

wolfSSL's wc_PKCS7_DecodeAuthEnvelopedData() does not properly sanitize the AES-GCM authentication tag length received and has no lower bounds check. A man-in-the-middle can therefore truncate the mac field from 16 bytes to 1 byte, reducing the tag check from 2⁻¹²⁸ to 2⁻⁸.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-20
Source
NVD

External References

Discussion (0)

Add Comment

No comments yet. Be the first!