SunwooLee programsurf

Sunwoo Lee

Ph.D. Researcher @ KENTECH · Post-Quantum Cryptography · AI agent Security

CVE Discoveries

Cryptographic Libraries

— OpenSSL NULL pointer dereference in QUIC server initial packet handling (invalid/expired token), reachable when address validation is disabled via SSL_LISTENER_FLAG_NO_VALIDATE (Moderate, CWE-476)
— wolfSSL DTLS 1.3 ACK heap buffer overflow (High, CWE-122)
— wolfSSL PKCS7 ORI OID stack buffer overflow (High, CWE-121)
— wolfSSL dual-algorithm CertificateVerify out-of-bounds read (Medium, CWE-125, Experimental; test credit)
— wolfSSL X.509 date buffer overflow in notAfter/notBefore compatibility API (Low, CWE-120)
— wolfSSL PKCS7 CBC padding oracle via unvalidated interior padding bytes (Medium, CWE-354)
— wolfSSL session cache arbitrary free via unvalidated deserialized pointer (Medium, CWE-761)
— leancrypto X.509 CN length truncation enables certificate identity impersonation (CVSS 5.9, CWE-681)
— Bouncy Castle BC-JAVA FrodoKEM non-constant time comparison enabling private key leakage (High, CWE-385)

AI / ML Frameworks

— whisperX-FastAPI SSRF via unvalidated URL fetch with extension bypass (CVSS 5.8, CWE-918)
— text-generation-webui path traversal in load_template() leaks .jinja/.yaml files (CVSS 5.3, CWE-22)
— text-generation-webui path traversal in load_preset() leaks arbitrary .yaml files (CVSS 5.3, CWE-22)
— text-generation-webui path traversal in load_grammar() leaks arbitrary files (CVSS 7.5, CWE-22)
— text-generation-webui SSRF in superbooga RAG extensions enables cloud credential theft (CVSS 7.5, CWE-918)
— text-generation-webui path traversal in load_prompt() leaks arbitrary .txt files (CVSS 5.3, CWE-22)
— AutoGPT Platform IDOR in webhook ping endpoint allows cross-user webhook enumeration, OAuth provider type leakage, and unauthorized ping triggering due to missing ownership verification (CVSS 4.6, CWE-284/CWE-639)

Web Applications & Tooling

— @hey-api/openapi-ts prototype chain substitution in buildClientParams template via crafted $query___proto__ slot key (Moderate, CWE-1321)
— FlaskBB SSRF in get_image_info() via unrestricted avatar URL enabling cloud metadata access and internal port scanning (CVSS 6.5, CWE-918)

Bug Reports

— Microsoft SymCrypt ML-DSA UINT16 signing counter wrap causes nonce reuse
— LMS wc_LmsKey_Sign insufficient buffer size and missing callback validation
— Negative ASN.1 integer overflow in CRL number field decoding
— RSA exponent stack buffer overflow in wolfSSL_EVP_PKEY_print_public
— DTLS fragment reassembly reads uninitialized heap contents
— DTLS 1.3 word16 truncation on handshake send size
— Missing hashLen sanity check in wc_dilithium_verify_ctx_hash
— sat.smt=true returns invalid models for BV comparator predicates; smt.elim_unconstrained abstracts comparators to fresh booleans and witness reconstruction satisfies each independently without joint consistency
— MAYO mayo_sign_signature returns MAYO_OK after 256-attempt rejection sampling exhaustion, assembling signature from invalid solution buffer

Patch Contributions

— Uninitialized QUIC connection IDs (CWE-457)
— Channel memory leak on initial secret failure (CWE-401), backported to 3.3–4.0

Standards Contributions

— Reported κ counter width ambiguity in FIPS 204 to NIST pqc-comments on 2026-03-31

"When Removing Reductions Goes Wrong: Auditing Reduction Placement in Production ML-DSA Implementations", Cryptology ePrint Archive 2026/1032 [ePrint]
"When API Keys Leak: Securing AI Services with Post-Quantum Proof-of-Possession", ICAIIC 2026 [IEEE Xplore]
"A Maturity Model for Crypto-Agility in Substation Automation Systems", ICAIIC 2026 [IEEE Xplore]
"Signed-Only Execution for Third-Party Pre-Trained Models in AI Platforms", IEEE BigData 2025 [IEEE Xplore]
"Evaluating Post-Quantum Cryptography for Resource-Constrained AMI Gateways", IEEE CNS 2025 [IEEE Xplore]