Heap Out-of-Bounds Write Vulnerability in WolfSSL's Asn.c
CVE-2026-5187

2.3LOW

Key Information:

Vendor: Wolfssl
Status: Wolfssl
Vendor: CVE Published:; 9 April 2026

What is CVE-2026-5187?

Two vulnerabilities have been identified in the DecodeObjectId() function within the wolfSSL library's src/asn.c file. The first issue arises from insufficient bounds checking, which only verifies one available slot before attempting to write two Object Identifier (OID) arc values, allowing for a potential 2-byte out-of-bounds write when the output size is set to one. The second issue occurs when multiple function callers incorrectly provide the size of a buffer (64 bytes on 64-bit platforms) instead of the proper element count (32). This results in the acceptance of crafted OIDs with an excessive number of arcs (greater than 32), which can lead to writing beyond the allocated memory buffer, compromising data integrity and security.

Affected Version(s)

wolfSSL 0 <= 5.9.0

References

https://github.com/wolfSSL/wolfssl

CVSS V4

Score:

2.3

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 9, 2026
Vulnerability Reserved
Mar 30, 2026

Credit

ytsun, Independent Security Researcher

CVE-2026-5187 Data

JSON