Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-5991

In function MatchDomainName(), input param str is treated as a NULL terminated string despite being user provided and unchecked. Specifically, the function X509_check_host() takes in a pointer and length to check against, with no requirements that it be NULL terminated. If a caller was attempting to do a name check on a non-NULL terminated buffer, the code would read beyond the bounds of the input array until it found a NULL terminator.This issue affects wolfSSL: through 5.7.0.

Published

2024-08-27T19:15:18.080

Last Modified

2024-09-06T22:51:41.470

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-125
Type: Primary
CWE-125

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	wolfssl	wolfssl	≤ 5.7.0	Yes

References

https://https://github.com/wolfSSL/wolfssl/pull/7604 Broken Link ([email protected])
https://github.com/wolfSSL/wolfssl/pull/7604 Issue Tracking, Patch ([email protected])