Forward Secrecy Violation in WolfSSL TLS 1.3_CVE-2025-11935

6.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N

Description

With TLS 1.3 pre-shared key (PSK) a malicious or faulty server could ignore the request for PFS (perfect forward secrecy) and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing psk_dhe_ke without a key_share extension. The re-use of an authenticated PSK connection that on the clients side unexpectedly did not have PFS, reduces the security of the connection.

Basic Information

ID CVE-2025-11935

Source wolfSSL

Published Nov 21, 2025 at 22:04

Affected Product

Vendor wolfSSL

Product wolfSSL

Version v5.8.2

Affected Versions wolfSSL wolfSSL v5.8.2

CWE Classification

CWE-326

References

{
    "lastseen": "",
    "description": "With TLS 1.3 pre-shared key (PSK) a malicious or faulty server could ignore the request for PFS (perfect forward secrecy) and the client would continue on with the connection using PSK without PFS. This happened when a\u00a0server responded to a ClientHello containing psk_dhe_ke without a key_share extension.\u00a0The re-use of an authenticated PSK connection that on the clients side unexpectedly did not have PFS, reduces the security of the connection.",
    "published": "2025-11-21T22:04:52.335Z",
    "modified": "2025-11-21T22:04:52.335Z",
    "type": "cve",
    "title": "Forward Secrecy Violation in WolfSSL TLS 1.3",
    "source": "wolfSSL",
    "references": "https://github.com/wolfSSL/wolfssl\nhttps://github.com/wolfSSL/wolfssl/pull/9112",
    "id": "CVE-2025-11935",
    "bulletinFamily": "",
    "cwe": [
        "CWE-326"
    ],
    "cvelist": null,
    "sourceData": "wolfSSL wolfSSL v5.8.2",
    "sourceHref": "",
    "cvss": {
        "score": 6.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "wolfSSL",
    "version": "v5.8.2",
    "vendor": "wolfSSL",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}