CVE-2026-5479

HIGH

wolfSSL EVP ChaCha20-Poly1305 AEAD authentication tag

Title source: cna

Description

In wolfSSL's EVP layer, the ChaCha20-Poly1305 AEAD decryption path in wolfSSL_EVP_CipherFinal (and related EVP cipher finalization functions) fails to verify the authentication tag before returning plaintext to the caller. When an application uses the EVP API to perform ChaCha20-Poly1305 decryption, the implementation computes or accepts the tag but does not compare it against the expected value.

References (1)

https://github.com/wolfSSL/wolfssl/pull/10102

Scores

CVSS v3 8.1

EPSS 0.0000

EPSS Percentile 0.1%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-354

Status published

Products (2)

wolfSSL/wolfSSL < 5.9.1

wolfssl/wolfssl < 5.9.1

Published Apr 10, 2026

Tracked Since Apr 10, 2026