exploitDog

CVE-2026-4159

Опубликовано: 19 мар. 2026

Источник: nvd

EPSS Низкий

Описание

1-byte OOB heap read in wc_PKCS7_DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wc_PKCS7_DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted content. Note that PKCS7 support is disabled by default.

Ссылки

https://github.com/wolfSSL/wolfssl/pull/9945

EPSS

Процентиль: 5%

0.00019

Низкий

Дефекты

CWE-125

Связанные уязвимости

CVE-2026-4159

ubuntu

22 дня назад

1-byte OOB heap read in wc_PKCS7_DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wc_PKCS7_DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted content. Note that PKCS7 support is disabled by default.

CVE-2026-4159

msrc

10 дней назад

wc_PKCS7_DecodeEnvelopedData 1 byte out-of-bounds read

CVE-2026-4159

debian

22 дня назад

1-byte OOB heap read in wc_PKCS7_DecodeEnvelopedData via zero-length e ...

GHSA-m9r6-9wmx-24jv

github

22 дня назад

1-byte OOB heap read in wc_PKCS7_DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wc_PKCS7_DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted content. Note that PKCS7 support is disabled by default.

EPSS

Процентиль: 5%

0.00019

Низкий

Дефекты

CWE-125