Buffer overflow in Wolfssl Inc.
CVE-2026-3849
Stack Buffer Overflow in wc_HpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH (Encrypted Client Hello) support, where a maliciously crafted ECH config could cause a stack buffer overflow on the clien…
Vulnerability class: Buffer Overflow
EPSS: 0.002 (45.5th percentile) — read the EPSS interpretation.
Affected products
- Wolfssl Inc. — versions v5.6.0-stable