Linux Distros Unpatched Vulnerability : CVE-2025-59438

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mbed TLS through 3.6.4 has an Observable Timing Discrepancy. CVE-2025-59438 Note that Nessus relies on the presence of the package as reported by the vendor...

CVE-2025-11145

Observable Discrepancy, Exposure of Sensitive Information to an Unauthorized Actor, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in CBK Soft Software Hardware Electronic Computer Systems Industry and Trade Inc. EnVision allows Account Footprinting.This issue...

CVE-2025-11145

Observable Discrepancy, Exposure of Sensitive Information to an Unauthorized Actor, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in CBK Soft Software Hardware Electronic Computer Systems Industry and Trade Inc. EnVision allows Account Footprinting. This issue...

CVE-2025-34155

Tibbo AggreGate Network Manager 6.40.05 contains an observable response discrepancy in its login functionality. Authentication failure messages differ based on whether a supplied username exists or not, allowing an unauthenticated remote attacker to infer valid account identifiers. This can...

Observable Response Discrepancy

Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Observable Response Discrepancy in the router. An attacker can determine the existence of specific course IDs by analyzing the different responses returned for valid and invalid IDs. Remediation...

SUSE CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

EUVD-2025-35171

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

ALPINE-CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

DEBIAN-CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

UBUNTU-CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

CVE-2025-59438

CVE-2025-59438 affects Mbed TLS up to version 3.6.4, describing an observable timing discrepancy in the library. Multiple connected advisories indicate the issue is addressed by upgrading to 3.6.5 (e.g., Fedora 43/Fedora 43 backports, openSUSE SUSE advisories), with references noting the fix as p...

PT-2025-42888

Name of the Vulnerable Software and Affected Versions Mbed TLS versions through 3.6.4 Description Mbed TLS contains an Observable Timing Discrepancy. This issue may allow for timing attacks. Recommendations Update to a version of Mbed TLS newer than 3.6.4...

CVE-2025-59438

Mbed TLS through 3.6.4 has an Observable Timing Discrepancy...

EUVD-2025-34832

D-Link Nuclias Connect firmware versions = 1.3.1.4 contain an observable response discrepancy vulnerability. The application's 'Forgot Password' endpoint returns distinct JSON responses depending on whether the supplied email address is associated with an existing account. Because the responses...

CVE-2025-34254

D-Link Nuclias Connect firmware versions = 1.3.1.4 contain an observable response discrepancy vulnerability. The application's 'Login' endpoint returns distinct JSON responses depending on whether the supplied username is associated with an existing account. Because the responses differ in the...