CVE-2026-5772

Vulnerability Description

A 1-byte stack buffer over-read was identified in the MatchDomainName function (src/internal.c) during wildcard hostname validation when the LEFT_MOST_WILDCARD_ONLY flag is active. If a wildcard * exhausts the entire hostname string, the function reads one byte past the buffer without a bounds check, which could cause a crash.

Vulnerability Details

Published Date

April 09, 2026

Last Modified

April 13, 2026

CWE ID

CWE-126

Source

NVD

External References

https://github.com/wolfSSL/wolfssl/pull/10119

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment