CVE Database · CVE-2025-13912
CVSS v3.1
N/A
CVSS v4.0
1.0
EPSS
0.12%
Published
Dec 11, 2025
Modified
Apr 14, 2026
Public PoC / Exploit
All weaponized →No public PoC or exploit code indexed for this CVE.
Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Multiple constant-time implementations in wolfSSL before version 5.8.4 may be transformed into non-constant-time binary by LLVM optimizations, which can potentially result in observable timing discrepancies and lead to information disclosure through timing side-channel attacks.
Weaknesses (CWE)
References (1)
