CVE-2026-6329
Received Received - Intake
PKCS#12 MAC Length Validation Flaw in wolfSSL

Publication date: 2026-06-25

Last updated on: 2026-06-25

Assigner: wolfSSL Inc.

Description
PKCS#12 MAC verification uses an attacker-controlled comparison length, weakening the integrity check on the MAC and allowing a mismatched MAC to be accepted. The PKCS#12 verify path compared the locally computed HMAC against the MAC parsed from the PKCS#12 structure using a length taken directly from the attacker-supplied input, without first verifying that it equals the length of the digest actually produced by the configured algorithm. A truncated or zero-length stored MAC could therefore be accepted, defeating the integrity protection of the MAC.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-25
Last Modified
2026-06-25
Generated
2026-06-26
AI Q&A
2026-06-26
EPSS Evaluated
N/A
NVD
CVE-2026-6329
EUVD
EUVD-2026-39571
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
wolfssl wolfssl *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-347 The product does not verify, or incorrectly verifies, the cryptographic signature for data.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Impact Analysis

The vulnerability can impact you by allowing an attacker to bypass the integrity protection of the MAC in PKCS#12 files. This means that tampered or corrupted data could be accepted as authentic, potentially leading to unauthorized data modification or acceptance of malicious content without detection.

Executive Summary

This vulnerability involves the PKCS#12 MAC verification process, where the length used for comparison is controlled by an attacker. Specifically, the verification compares the locally computed HMAC against the MAC from the PKCS#12 structure using a length taken directly from attacker-supplied input without verifying if it matches the actual digest length. This flaw allows a truncated or even zero-length MAC to be accepted, thereby weakening the integrity check and potentially allowing tampered data to be accepted as valid.

Compliance Impact

This vulnerability weakens the integrity check on the MAC in PKCS#12 by allowing an attacker-controlled comparison length, which can result in acceptance of a mismatched or truncated MAC. This defeats the integrity protection of the MAC.

Since the integrity of cryptographic verification is compromised, systems relying on PKCS#12 for secure key storage and verification may be at increased risk of unauthorized data modification or tampering.

Such a weakness could negatively impact compliance with standards and regulations like GDPR and HIPAA, which require strong data integrity and protection mechanisms to safeguard sensitive personal and health information.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-6329. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart