cvedb.io
CVE-2021-3336
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2021-01-29T05:15:12.197 · Last modified 2026-06-17T04:04:57.717

Summary

DoTls13CertificateVerify in tls13.c in wolfSSL before 4.7.0 does not cease processing for certain anomalous peer behavior (sending an ED22519, ED448, ECC, or RSA signature without the corresponding certificate). The client side is affected because man-in-the-middle attackers can impersonate TLS 1.3 servers.

Affected products

wolfssl — wolfssl

Does this affect you?

Add your gear to cvedb and we'll alert you only when wolfssl ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.