{"id":"CVE-2026-10098","summary":"OCSP CertID serial-number length-confusion in wolfSSL_OCSP_resp_find_status","details":"OCSP CertID serial-number length-confusion in wolfSSL_OCSP_resp_find_status allows a same-issuer SingleResponse whose serial is a prefix of the target serial to be reported as the revocation status of a different certificate. The lookup compared serial-number bytes without first requiring the two serial numbers to be of equal length, so a SingleResponse for one certificate (same issuer) whose serial is a prefix of the target's serial would match, returning the wrong certificate's status. The fix requires the serial lengths to be equal before comparing the serial bytes.","modified":"2026-07-16T03:48:10.352731483Z","published":"2026-06-25T21:16:45.850Z","database_specific":{"cna_assigner":"wolfSSL","cwe_ids":["CWE-295"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/10xxx/CVE-2026-10098.json"},"references":[{"type":"WEB","url":"https://www.wolfssl.com/docs/security-vulnerabilities/"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/10xxx/CVE-2026-10098.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-10098"},{"type":"FIX","url":"https://github.com/wolfSSL/wolfssl/pull/10554"},{"type":"PACKAGE","url":"https://github.com/wolfSSL/wolfssl"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/wolfssl/wolfssl","events":[{"introduced":"9c87f979a7f1d3a6d786b260653d566c1d31a1c4"},{"fixed":"ac01707f552c611fbd135cc723b2682b3e7f80f2"}],"database_specific":{"extracted_events":[{"introduced":"4.6.0"},{"last_affected":"5.9.1"},{"fixed":"5.9.2"}],"source":["AFFECTED_FIELD","CPE_RANGE"],"cpe":"cpe:2.3:a:wolfssl:wolfssl:*:*:*:*:*:*:*:*"}}],"versions":["v5.9.1-stable","v5.9.0-stable","v5.8.4-stable","wolfEntropy2d","v5.8.2-stable","wolfEntropy1","v5.8.0-stable","v5.7.6-stable","v5.7.4-stable","v5.2.1","v5.7.2-stable","v5.7.0-stable","v5.6.6-stable","v5.6.4-stable","WCv5.0-RC12","WCv5.0-RC11","WCv5.0-RC10","v5.6.2-stable","v5.6.3-stable","v5.6.0-stable","v5.5.4-stable","v5.5.3-stable","v5.5.2-stable","v5.5.1-stable","v5.5.0-stable","v5.4.0-stable","v5.3.0-stable","v5.2.0-stable","v5.1.0-stable","v5.0.0-stable","WCv5.0-RC9","v4.8.0-stable","v4.7.1r","v4.7.0-stable","v4.6.0-stable"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-10098.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"}]}