CVE-2014-2902

HIGH

wolfssl < 3.2.0 - Improper Certificate Validation

Title source: llm

wolfssl before 3.2.0 does not properly authorize CA certificate for signing other certificates.

Core 3

Core References

Mailing List, Third Party Advisory x_refsource_misc

Third Party Advisory x_refsource_misc

Mailing List, Patch, Third Party Advisory x_refsource_misc

CVSS v3 7.5

EPSS 0.0081

EPSS Percentile 52.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE

CWE-295

Status published

Products (1)

wolfssl/wolfssl < 3.2.0

Published Nov 21, 2019

Tracked Since Feb 18, 2026