PatchSiren cyber security CVE debrief

CVE-2026-5194 wolfSSL CVE debrief

## Summary A critical vulnerability in wolfSSL allows ECDSA signature verification to accept digests smaller than cryptographically appropriate when EdDSA or ML-DSA is also enabled. Missing hash/digest size and OID checks permit undersized digests during ECDSA certificate verification, weakening authentication security when the CA public key is known. ## Technical Details The flaw exists in wolfSSL's signature verification functions. When EdDSA or ML-DSA algorithms are compiled in, the ECDSA verification path fails to enforce minimum digest sizes and validate OIDs properly. This allows: - Digests smaller than NIST/SECG recommendations for the key size - Digests smaller than the security level of the ECDSA key would warrant The vulnerability affects ECDSA/ECC certificate verification only when alternative signature schemes (EdDSA, ML-DSA) are also enabled in the build. ## Affected Versions - wolfSSL: 3.12.0 and later, prior to 5.9.1 ## Impact Successful exploitation reduces the effective security of ECDSA-based authentication. An attacker with knowledge of the CA public key could leverage undersized digests to forge signatures or degrade security guarantees. CVSS 4.0 score: 9.3 (Critical). ## Timeline - **Published:** 2026-04-09 - **Last Modified:** 2026-04-16 ## Recommended Actions 1. **Upgrade immediately** to wolfSSL 5.9.1 or later 2. **Verify build configuration:** If EdDSA or ML-DSA must remain enabled, ensure the patched version is deployed 3. **Audit certificate chains:** Review ECDSA certificates in use for proper digest algorithm strength 4. **Monitor for anomalies:** Log signature verification failures as potential indicators ## References See resourceLinkAnnotations for official sources.