Search CVE reports

Toggle filters

1 – 10 of 74 results

CVE-2025-59438

Medium priority
Vulnerable

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy.

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2025-54764

Medium priority
Vulnerable

Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2025-49087

Medium priority
Vulnerable

In Mbed TLS 3.6.1 through 3.6.3 before 3.6.4, a timing discrepancy in block cipher padding removal allows an attacker to recover the plaintext when PKCS#7 padding mode is used.

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Not affected Not affected Not affected Not affected
Show less packages

CVE-2025-47917

Medium priority
Vulnerable

Mbed TLS before 3.6.4 allows a use-after-free in certain situations of applications that are developed in accordance with the documentation. The function mbedtls_x509_string_to_names() takes a head argument that is documented as...

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2025-48965

Medium priority
Vulnerable

Mbed TLS before 3.6.4 has a NULL pointer dereference because mbedtls_asn1_store_named_data can trigger conflicting data with val.p of NULL but val.len greater than zero.

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2025-52497

Medium priority
Vulnerable

Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in mbedtls_pem_read_buffer and two mbedtls_pk_parse functions, via untrusted PEM input.

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2025-52496

Medium priority
Vulnerable

Mbed TLS before 3.6.4 has a race condition in AESNI detection if certain compiler optimizations occur. An attacker may be able to extract an AES key from a multithreaded program, or perform a GCM forgery.

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2025-49601

Medium priority
Vulnerable

In MbedTLS 3.3.0 before 3.6.4, mbedtls_lms_import_public_key does not check that the input buffer is at least 4 bytes before reading a 32-bit field, allowing a possible out-of-bounds read on truncated input. Specifically,...

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Not affected Not affected Not affected Not affected
Show less packages

CVE-2025-49600

Medium priority
Vulnerable

In MbedTLS 3.3.0 before 3.6.4, mbedtls_lms_verify may accept invalid signatures if hash computation fails and internal errors go unchecked, enabling LMS (Leighton-Micali Signature) forgery in a fault scenario. Specifically,...

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Not affected Not affected Not affected Not affected
Show less packages

CVE-2025-27810

Medium priority
Vulnerable

Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uses uninitialized stack memory to compose the TLS Finished message, potentially leading to authentication bypasses such...

1 affected package

mbedtls

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mbedtls Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page
Export to JSON