Improper Certificate Validation in wolfSSL - CVE-2026-6091
Published: July 1, 2026
wolfSSL
Detailed vulnerability description
The vulnerability allows a remote attacker to bypass certificate chain validation.
The vulnerability exists due to improper certificate validation in partial-chain certificate verification when processing a chain that terminates at a peer-supplied intermediate certificate. A remote attacker can present a crafted certificate chain to bypass certificate chain validation.