CVE-2026-5194 is a critical-severity certificate validation and cryptographic signature verification bypass in WolfSSL (CVSS 9.5), rooted in missing hash/digest size and OID checks during certificate processing. Any application or embedded system that relies on WolfSSL for TLS or PKI verification is potentially vulnerable to man-in-the-middle interception and authentication bypass. A confirmed patched version boundary has not been published upstream as of this report; all WolfSSL versions should be treated as affected until the vendor releases a definitive fix advisory.