CNNVD-202507-2480 Information

CNNVD ID

CNNVD-202507-2480

Related CVE

CVE-2025-7395

• CNNVD Published: 2025-07-18

Description (Chinese)

wolfSSL（CyaSSL）是美国wolfSSL公司的一个针对嵌入式系统开发人员使用的小的、可移植的嵌入式SSL编程库。 wolfSSL（CyaSSL）存在安全漏洞，该漏洞源于证书验证错误，可能导致客户端接受任意受信任CA签发的证书。

Description (English)

WolfSSL (CyaSSL) is a small, portable, embedded SSL programming library for embedded system developers in the United States of America. There is a security loophole in the WolfSSL (CyaSSL), which stems from a certificate certification error that could lead the client to accept a certificate issued by the CA at will.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

wolfSSL

Published

2025-07-18

Last Modified

2026-02-24

References

http://github.com/wolfssl/wolfssl.git https://access.redhat.com/security/cve/cve-2025-7395