Security Advisory

CVE-2025-11936

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-21 22:24:27

Last updated 2025-12-08 15:50:46

Assigner wolfSSL

State PUBLISHED

Description

Improper input validation in the TLS 1.3 KeyShareEntry parsing in wolfSSL v5.8.2 on multiple platforms allows a remote unauthenticated attacker to cause a denial-of-service by sending a crafted ClientHello message containing duplicate KeyShareEntry values for the same supported group, leading to excessive CPU and memory consumption during ClientHello processing.

← Browse all CVEs View on cve.org ↗