CVE-2025-11933 – DoS Vulnerability in wolfSSL TLS 1.3 CKS Extension

CVE ID : CVE-2025-11933

Published : Nov. 21, 2025, 10:19 p.m. | 57 minutes ago

Description : Improper Input Validation in the TLS 1.3 CKS extension parsing in wolfSSL 5.8.2 and earlier on multiple platforms allows a remote unauthenticated attacker to potentially cause a denial-of-service via a crafted ClientHello message with duplicate CKS extensions.

Severity: 2.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…