CVE-2024-5991

HIGH

Wolfssl < 5.7.0 - Out-of-Bounds Read

Title source: rule

Description

In function MatchDomainName(), input param str is treated as a NULL terminated string despite being user provided and unchecked. Specifically, the function X509_check_host() takes in a pointer and length to check against, with no requirements that it be NULL terminated. If a caller was attempting to do a name check on a non-NULL terminated buffer, the code would read beyond the bounds of the input array until it found a NULL terminator.This issue affects wolfSSL: through 5.7.0.

References (2)

[Broken Link] https://https://github.com/wolfSSL/wolfssl/pull/7604

[Issue Tracking, Patch] https://github.com/wolfSSL/wolfssl/pull/7604

Scores

CVSS v3 7.5

EPSS 0.0011

EPSS Percentile 29.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-125

Status published

Products (1)

wolfssl/wolfssl < 5.7.0

Published Aug 27, 2024

Tracked Since Feb 18, 2026