CVE-2025-7395 Information

Description

A certificate verification error in wolfSSL when building with the WOLFSSL_SYS_CA_CERTS and WOLFSSL_APPLE_NATIVE_CERT_VALIDATION options results in the wolfSSL client failing to properly verify the server certificate’s domain name allowing any certificate issued by a trusted CA to be accepted regardless of the hostname.

Reference

http://github.com/wolfssl/wolfssl.git

Related CNNVD

CNNVD-202507-2480 (Published: 2025-07-18)