Improper Certificate Validation in wolfSSL - CVE-2026-55960
Published: July 1, 2026
wolfSSL
Detailed vulnerability description
The vulnerability allows a remote attacker to bypass certificate chain validation.
The vulnerability exists due to improper certificate validation in ParseCertRelative() when handling a raw public key that was not negotiated. A remote attacker can present an un-negotiated raw public key to bypass certificate chain validation.
Only builds with Raw Public Key support enabled are affected.