Vulnerability in Wolfssl

CVE-2026-5501

wolfSSL_X509_verify_cert in the OpenSSL compatibility layer accepts a certificate chain in which the leaf's signature is not checked, if the attacker supplies an untrusted intermediate with Basic Constraints `CA:FALSE` that is legitimately…

Vulnerability class: Improper Certificate Validation

EPSS: 0.000 (6.7th percentile) — read the EPSS interpretation.