wolfSSL CyaSSL prior to 2.9.4 does not properly validate X.509 certificates with unknown critical extensions, which allows man-in-the-middle malicious users to spoof servers via crafted X.509 certificate.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
yassl cyassl 0.6.2 |
||
yassl cyassl 0.6.3 |
||
yassl cyassl 1.0.0 |
||
yassl cyassl 1.0.2 |
||
yassl cyassl 1.5.0 |
||
yassl cyassl 1.5.4 |
||
yassl cyassl 2.0.0 |
||
yassl cyassl |
||
yassl cyassl 2.8.0 |
||
yassl cyassl 0.4.0 |
||
yassl cyassl 0.5.0 |
||
yassl cyassl 0.9.6 |
||
yassl cyassl 0.9.8 |
||
yassl cyassl 0.9.9 |
||
yassl cyassl 1.1.0 |
||
yassl cyassl 1.2.0 |
||
yassl cyassl 1.6.5 |
||
yassl cyassl 1.8.0 |
||
yassl cyassl 2.2.0 |
||
yassl cyassl 2.3.0 |
||
yassl cyassl 2.5.0 |
||
yassl cyassl 0.5.5 |
||
yassl cyassl 0.6.0 |
||
yassl cyassl 1.3.0 |
||
yassl cyassl 1.4.0 |
||
yassl cyassl 1.9.0 |
||
yassl cyassl 2.4.0 |
||
yassl cyassl 2.4.6 |
||
yassl cyassl 0.2.0 |
||
yassl cyassl 0.3.0 |
||
yassl cyassl 0.8.0 |
||
yassl cyassl 0.9.0 |
||
yassl cyassl 1.0.3 |
||
yassl cyassl 1.0.6 |
||
yassl cyassl 1.5.6 |
||
yassl cyassl 1.6.0 |
||
yassl cyassl 2.0.2 |
||
yassl cyassl 2.0.6 |
||
yassl cyassl 2.0.8 |
||
yassl cyassl 2.7.0 |
||
yassl cyassl 2.6.0 |
Vulmon