DEVELOPERS have patched six high-severity vulnerabilities in the wolfSSL embedded SSL library, which include a critical X.509 trust-chain bypass and dangerous heap buffer overflows. Immediate updates are necessary to prevent potential remote code execution or denial of service. These vulnerabilities can compromise secure communications in resource-constrained IoT devices, risking serious network breaches.
The flaws primarily affect versions 5.9.0 and earlier, with certain compatibility issues in versions 5.7.4 to 5.9.1. While no active exploitation of these vulnerabilities has been observed yet, administrators should upgrade to the latest releases as soon as possible to safeguard their systems.