Unrated severityNVD Advisory· Published Jun 26, 2026

Debian wolfssl: Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 …

CVE-2026-6094

Description

Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. This could theoretically be triggered by attacker-supplied data delivered via S/MIME or CMS.

Patches

Vulnerability mechanics

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000