A cryptographic implementation flaw in wolfSSL’s ML-KEM decapsulation process creates a high-severity risk to the integrity of protected communications.

The vulnerability exists in the mlkem_cmp_avx2 function, where the implementation fails to compare the full length of the ciphertext during the Fujisaki-Okamoto re-encryption check. This incomplete comparison during ML-KEM-1024 decapsulation could potentially be exploited to facilitate cryptographic attacks.

With a CVSS score of 8.3, this flaw undermines the security guarantees of the ML-KEM implementation, potentially allowing an attacker to weaken encrypted sessions. This poses a significant threat to data confidentiality, as successful exploitation could lead to the exposure of sensitive information protected by the affected cryptographic protocols.

Immediate Action: Update the wolfSSL library to the latest version that contains the corrected ML-KEM implementation.

Proactive Monitoring: Monitor systems utilizing wolfSSL for unusual error rates or cryptographic failures that might indicate an attempt to exploit the decapsulation process.

Compensating Controls: Ensure that all cryptographic implementations are kept up to date and, where possible, utilize FIPS-validated modules that have been verified against such implementation flaws.

Public Exploit Available: false

Security teams must prioritize patching all applications that incorporate the wolfSSL library. Given the technical nature of this cryptographic failure, immediate remediation is required to ensure the continued integrity and confidentiality of encrypted traffic within the enterprise network.