1. Home
  2. CVE Database
  3. CVE-2025-7395
NONE · 0

CVE-2025-7395

A certificate verification error in wolfSSL when building with the WOLFSSL_SYS_CA_CERTS and WOLFSSL_APPLE_NATIVE_CERT_VALIDATION options results in the wolfSSL client failing to properly verify the s...

Vulnerability Description

A certificate verification error in wolfSSL when building with the WOLFSSL_SYS_CA_CERTS and WOLFSSL_APPLE_NATIVE_CERT_VALIDATION options results in the wolfSSL client failing to properly verify the server certificate's domain name, allowing any certificate issued by a trusted CA to be accepted regardless of the hostname.

Related Weaknesses (CWE)

CWE-295

References

FAQ

What is CVE-2025-7395?

CVE-2025-7395 is a documented vulnerability. A certificate verification error in wolfSSL when building with the WOLFSSL_SYS_CA_CERTS and WOLFSSL_APPLE_NATIVE_CERT_VALIDATION options results in the wolfSSL client failing to properly verify the s...

How severe is CVE-2025-7395?

CVSS scoring is not yet available for CVE-2025-7395. Check NVD for updates.

Is there a patch for CVE-2025-7395?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.