CVE-2025-11936 – Potential DoS Vulnerability through Multiple KeyShareEntry with Same Group in TLS 1.3 ClientHello

CVE ID : CVE-2025-11936

Published : Nov. 21, 2025, 11:15 p.m. | 2 hours, 1 minute ago

Description : Improper input validation in the TLS 1.3 KeyShareEntry parsing in wolfSSL v5.8.2 on multiple platforms allows a remote unauthenticated attacker to cause a denial-of-service by sending a crafted ClientHello message containing duplicate KeyShareEntry values for the same supported group, leading to excessive CPU and memory consumption during ClientHello processing.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-41066 – Disclosure of sensitive information in Horde Groupware

CVE-2025-13731 – Nexter Extension

CVE-2025-13295 – Sensitive Data Exposure in ArgusTech’s BILGER

CVE-2025-41086 – Authorization bypass in GAMS from GAMS Development Corp.