Description
Partial-chain certificate verification may accept chains that terminate at a peer-supplied, untrusted intermediate certificate rather than a trusted anchor. An attacker could present a chain that ends at an intermediate they control and have it accepted as valid. This affects the OpenSSL compatibility certificate-path-building path (wolfSSL_X509_verify_cert / X509_STORE, OPENSSL_EXTRA) when the X509_V_FLAG_PARTIAL_CHAIN verify flag is enabled.
Published: 2026-06-25
Score: 6 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Certificate path verification in wolfSSL may accept a chain that ends with a peer‑supplied intermediate certificate as a trusted anchor when the X509_V_FLAG_PARTIAL_CHAIN flag is enabled. This logic flaw allows an attacker to present a custom chain terminating in an intermediate they control, causing the library to treat the chain as valid. The resulting authentication bypass could enable Man‑in‑the‑Middle attacks, data tampering, or credential theft by allowing clients or servers to trust certificates that are not anchored to a known root.

Affected Systems

wolfSSL implementations that employ the OpenSSL compatibility layer for certificate path building, specifically the wolfSSL_X509_verify_cert function and X509_STORE, are impacted. The vulnerability arises when the X509_V_FLAG_PARTIAL_CHAIN option is set during verification. No specific product versions were listed, but any wolfSSL build that enables the partial‑chain flag remains vulnerable.

Risk and Exploitability

The CVSS score of 6 classifies the vulnerability as moderate. The exploit probability (EPSS) is currently unavailable and the issue is not featured in the CISA KEV catalog. An attacker must be able to supply a custom certificate chain to a client or server that has enabled the partial‑chain flag; once that flag is active, the attacker can construct a chain that ends with an intermediate they control, which is then accepted as a trust anchor, allowing the bypass of proper certificate validation.

Generated by OpenCVE AI on June 25, 2026 at 18:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to the latest version of wolfSSL that addresses the partial‑chain verification logic.
  • Discontinue the use of the X509_V_FLAG_PARTIAL_CHAIN flag in all TLS configurations unless absolutely required.
  • Configure TLS libraries to enforce that certificate chains must terminate at a trusted root and reject chains ending in untrusted intermediates.
  • Monitor TLS connections for custom chain anchors and audit logs for suspicious certificates.

Generated by OpenCVE AI on June 25, 2026 at 18:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 25 Jun 2026 22:00:00 +0000

Type Values Removed Values Added
First Time appeared Wolfssl
Wolfssl wolfssl
Vendors & Products Wolfssl
Wolfssl wolfssl

Thu, 25 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 25 Jun 2026 17:30:00 +0000

Type Values Removed Values Added
Description Partial-chain certificate verification may accept chains that terminate at a peer-supplied, untrusted intermediate certificate rather than a trusted anchor. An attacker could present a chain that ends at an intermediate they control and have it accepted as valid. This affects the OpenSSL compatibility certificate-path-building path (wolfSSL_X509_verify_cert / X509_STORE, OPENSSL_EXTRA) when the X509_V_FLAG_PARTIAL_CHAIN verify flag is enabled.
Title Partial-chain verification accepts untrusted intermediate as trust anchor
Weaknesses CWE-295
References
Metrics cvssV4_0

{'score': 6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: wolfSSL

Published:

Updated: 2026-06-25T17:58:31.045Z

Reserved: 2026-04-10T16:01:23.181Z

Link: CVE-2026-6091

cve-icon Vulnrichment

Updated: 2026-06-25T17:58:27.399Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-25T21:45:15Z

Weaknesses
  • CWE-295

    Improper Certificate Validation