216.73.217.80

CVE-2025-11931

· Published 21/11/2025 23:15 · Modified 04/12/2025 16:21

Labels: CVE-2025-11931 2025-11-21CVE-2025-11931CWE-191[email protected]

Essential information

Published
21/11/2025 23:15
Modified
04/12/2025 16:21
Author
Creator
CVSS
2.1 LOW (v3) 2.1 LOW (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Integer Underflow Leads to Out-of-Bounds Access in XChaCha20-Poly1305 Decrypt. This issue is hit specifically with a call to the function wc_XChaCha20Poly1305_Decrypt() which is not used with TLS connections, only from direct calls from an application.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
wolfssl / wolfssl cpe:2.3:a:wolfssl:wolfssl:5.8.4:*:*:*:*:*:*:*

References