CVE-2026-2646 — Heap-based Buffer Overflow in Wolfssl

CWE-122 — Heap-based Buffer Overflow6 documents6 sources

Severity

5.0MEDIUMNVD

EPSS

0.0%

top 97.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wolfssl Debian Wolfssl Msrc Azl3 Mariadb 10.11.16-1 ON Azure Linux 3.0 +1 more

Timeline

PublishedMar 19

Description

A heap-buffer-overflow vulnerability exists in wolfSSL's wolfSSL_d2i_SSL_SESSION() function. When deserializing session data with SESSION_CERTS enabled, certificate and session id lengths are read from an untrusted input without bounds validation, allowing an attacker to overflow fixed-size buffers and corrupt heap memory. A maliciously crafted session would need to be loaded from an external source to trigger this vulnerability. Internal sessions were not vulnerable.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages5 packages

▶debiandebian/wolfssl< wolfssl 5.9.0-0.1 (forky)

▶Debianwolfssl/wolfssl< 5.9.0-0.1

▶CVEListV5wolfssl/wolfssl5.8.4

▶msrcmsrc/cbl2_mariadb_10.6.24-1_on_cbl_mariner_2.0

▶msrcmsrc/azl3_mariadb_10.11.16-1_on_azure_linux_3.0

🔴Vulnerability Details

OSV

CVE-2026-2646: A heap-buffer-overflow vulnerability exists in wolfSSL's wolfSSL_d2i_SSL_SESSION() function↗2026-03-19

▶

GHSA

GHSA-24vq-qfc5-qrmj: A heap-buffer-overflow vulnerability exists in wolfSSL's wolfSSL_d2i_SSL_SESSION() function↗2026-03-19

▶

📋Vendor Advisories

Microsoft

Heap buffer overflow in session parsing with wolfSSL_d2i_SSL_SESSION() function↗2026-03-10

▶

Debian

CVE-2026-2646: wolfssl - A heap-buffer-overflow vulnerability exists in wolfSSL's wolfSSL_d2i_SSL_SESSION...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-2646 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶