{"id":"CVE-2021-37155","details":"wolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number in an OCSP request differs from the serial number in the OCSP response.","modified":"2026-03-14T11:03:13.037610Z","published":"2021-07-21T15:16:20.733Z","references":[{"type":"ADVISORY","url":"https://github.com/wolfSSL/wolfssl/releases/tag/v4.8.0-stable"},{"type":"FIX","url":"https://github.com/wolfSSL/wolfssl/pull/3990"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/wolfssl/wolfssl","events":[{"introduced":"9c87f979a7f1d3a6d786b260653d566c1d31a1c4"},{"fixed":"add4a68465bcdad238bcf3e5f2771d8da05e6285"}],"database_specific":{"versions":[{"introduced":"4.6.0"},{"fixed":"4.8.0"}]}}],"versions":["v4.6.0-stable","v4.7.0-stable","v4.7.1r"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-37155.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}