CVE-2026-5477: Prefix-substitution forgery via integer overflow in wolfCrypt CMAC

Overview

Severity

N/A

Exploit Status

Not Exploited

Patch Tuesday

2026-Apr

Released

2026-04-15

EPSS Score

0.04% (percentile: 12.7%)

Affected Products (2)

Other

• 21143-17086

Open Source Software

• azl3 mariadb 10.11.16-1 on Azure Linux 3.0

Revision History

• 2026-04-15: Information published.