Which versions of Red Hat are affected by CVE-2026-5194?

wolfSSL versions 3.12.0 through 5.9.0 contain a critical authentication bypass vulnerability in ECDSA signature verification that accepts weak digest sizes, allowing attackers with access to CA…. A patch is available.

Is there a public PoC exploit available for CVE-2026-5194?

Yes, a public proof-of-concept exploit is available for CVE-2026-5194. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2026-5194?

Within 24 hours: Identify all systems running wolfSSL versions 3.12.0-5.9.0 using inventory/dependency scanning tools. Within 7 days: Apply vendor-released patch to upgrade all affected wolfSSL instances to version 5.9.1 or later; prioritize production TLS endpoints and certificate validation services. Within 30 days: Conduct certificate audit to detect any anomalous issuance during vulnerability window; implement monitoring for ECDSA signature verification failures.

Red Hat CVE-2026-5194

Q: What is the CVSS score of CVE-2026-5194?

CVE-2026-5194 has a CVSS 4.0 base score of 9.3 (Critical). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red. EPSS exploitation probability: 0.0%.

EUVD-2026-21070 CRITICAL

Improper Certificate Validation (CWE-295)

2026-04-09 wolfSSL

GHSA-f5h9-5q52-qrx7

Information Disclosure Red Hat

9.3

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

9.3 CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red

Red Hat

10.0 CRITICAL

qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

Re-analysis Queued

Apr 16, 2026 - 20:52 vuln.today

cvss_changed

EUVD ID Assigned

Apr 09, 2026 - 20:15 euvd

EUVD-2026-21070

Analysis Generated

Apr 09, 2026 - 20:15 vuln.today

Patch released

Apr 09, 2026 - 20:15 nvd

Patch available

CVE Published

Apr 09, 2026 - 19:30 nvd

CRITICAL 9.3

DescriptionCVE.org

Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than is appropriate for the relevant key type, to be accepted by signature verification functions. This could lead to reduced security of ECDSA certificate-based authentication if the public CA key used is also known. This affects ECDSA/ECC verification when EdDSA or ML-DSA is also enabled.

AnalysisAI

ECDSA signature verification in wolfSSL 3.12.0 through 5.9.0 accepts cryptographically weak digest sizes below protocol-mandated minimums, enabling authentication bypass when attackers possess the public CA key. Authenticated network attackers can exploit this to compromise confidentiality and integrity of certificate-based sessions. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticate with valid credentials

Exploit

Submit certificate with undersized digest

Execution

Bypass ECDSA signature verification

Impact

Impersonate trusted certificate authority