CVE-2026-4159 — Vulnetix

CVE-2026-4159 PUBLISHED CVSS 1.2000000476837158 LOW

1-byte OOB heap read in wc_PKCS7_DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wc_PKCS7_DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted content. Note that PKCS7 support is disabled by default.

EPSS 0.02% · 5.1th percentile

Risk Scores

CVSS v4.0

1.2000000476837158

CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Green

EPSS Score

0.02%

5.1th percentile

Affected Products

Vendor	Product	Versions
wolfSSL	wolfSSL	0, 0, 0

Timeline

Mar 19, 2026 CVE Published
Mar 19, 2026 PoC Published
Mar 20, 2026 EPSS Score
Mar 20, 2026 CVE Updated
Mar 21, 2026 EPSS Score
Mar 21, 2026 Coalition ESS Score
Mar 22, 2026 EPSS Score
Mar 23, 2026 EPSS Score
Mar 24, 2026 EPSS Score
Mar 25, 2026 EPSS Score
Mar 29, 2026 Security Advisory
May 18, 2026 EPSS Score

References

https://github.com/wolfSSL/wolfssl/pull/9945 url
https://nvd.nist.gov/vuln/detail/CVE-2026-4159 advisory

Open in Interactive Console →