CVE-2026-5194

CRITICAL

wolfSSL ECDSA Certificate Verification

Title source: cna
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-5194. PoCs published by jenniferreire26.

AI-analyzed exploit summary The repository lacks actual exploit code and instead directs users to an external download link (tinyurl.com), which is a common tactic for distributing malware or fake exploits. The README provides minimal technical details and reads more like a sales pitch.

Description

Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than is appropriate for the relevant key type, to be accepted by signature verification functions. This could lead to reduced security of ECDSA certificate-based authentication if the public CA key used is also known. This affects ECDSA/ECC verification when EdDSA or ML-DSA is also enabled.

Exploits (1)

nomisec SUSPICIOUS
by jenniferreire26 · poc
https://github.com/jenniferreire26/CVE-2026-5194

The repository lacks actual exploit code and instead directs users to an external download link (tinyurl.com), which is a common tactic for distributing malware or fake exploits. The README provides minimal technical details and reads more like a sales pitch.

Classification
Suspicious 95%
Attack Type
Other
Complexity
Theoretical
Reliability
Theoretical
Target: Wolfssl Wolfssl before 5.9.1
No auth needed
Prerequisites: none specified
devstral-2 · analyzed Apr 19, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 9.1
EPSS 0.0002
EPSS Percentile 5.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-295
Status published
Products (2)
wolfSSL/wolfSSL 3.12.0 - 5.9.1
wolfssl/wolfssl 3.12.0 - 5.9.1
Published Apr 09, 2026
Tracked Since Apr 10, 2026