← back
CVE-2026-6412

Continued acceptance of SHA-1/MD5 digests in certificate processing

CVSS 2.3 LOWEPSS 0.1%CWE-327
Certificate policy and RFC 8446 compliance concerns regarding the continued acceptance of SHA-1/MD5 in certificate processing.
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/U:Clear
Affected products
wolfSSL · wolfSSL

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/wolfSSL/wolfssl/pull/10222https://www.wolfssl.com/docs/security-vulnerabilities/