vulnerability context

CVE-2026-6679

CVSS 7.5 HIGHEPSS 30%CWE-190OTX 5 pulses

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due to an integer truncation when computing the length of the ACK record-number list, causing an undersized buffer to be allocated and then overrun. This affects builds using DTLS 1.3 and wolfSSL version 5.9.0 and earlier. A fix was added to the 5.9.1 release.

Published 2026-06-25 · last modified 2026-06-27

details

CISA KEV status: Not in catalog
CVSS v3: 7.5 / HIGH
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS: 30% percentile (score 0.0039)
CWE: CWE-190
OTX pulses: 5 total, 0 recent

View on NVD → · cve.org

source mentions 2

[CyberHub] 📌 CVE-2026-6679 - A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting pe...Bluesky:@cyberhub.blog · 1h ago
[CVE Alerts ] CVE-2026-6679 - DTLS 1.3 ACK serialization heap buffer overflow via integer truncation CVE ID : CVE-2026-6679 Pub...Bluesky · 4d ago

source consensus

Bluesky:@cyberhub.blog1×
Bluesky1×

Want the 3-bullet summary of CVE-2026-6679, plus webhook alerts when KEV is updated? Pro is $10/mo.

Open in reader See Pro →