CVE-2026-5500

Name of the Vulnerable Software and Affected Versions wolfSSL (affected versions not specified)

Description wolfSSL's wc PKCS7 DecodeAuthEnvelopedData() function does not properly sanitize the AES-GCM authentication tag length received and lacks a lower bounds check. This allows a man-in-the-middle attacker to truncate the message authentication code (MAC) field, reducing the tag check from 2⁻¹²⁸ to 2⁻⁸.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.