490 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-49601
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In MbedTLS 3.3.0 before 3.6.4, mbedtlslmsimportpublickey does not check that the input buffer is at least 4 bytes before reading a 32-bit field, allowing a...
The vulnerability of the mbedtls_lms_import_public_key() function in Mbed TLS software allows a attacker to cause a service failure or disclose protected information.
The vulnerability of the mbedtlslmsimportpublickey function in Mbed TLS involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure or expose sensitive information...
The vulnerability of the mbedtls_x509_string_to_names function in Mbed TLS software allows a attacker to execute arbitrary code.
The vulnerability of the mbedtlsx509stringtonames function in Mbed TLS is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the mbedtls_aesni_has_support() function in the Mbed TLS software allows a attacker to compromise the integrity and confidentiality of the protected information.
The vulnerability of the mbedtlsaesnihassupport function in Mbed TLS is related to compiler optimization. Exploiting this vulnerability could allow an attacker to compromise the integrity and confidentiality of the protected information...
Linux Distros Unpatched Vulnerability : CVE-2025-49600
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In MbedTLS 3.3.0 before 3.6.4, mbedtlslmsverify may accept invalid signatures if hash computation fails and internal errors go unchecked, enabling LMS...
Exploit for Use After Free in Arm Mbed_Tls
CVE-2025-47917 Exploit Use-After-Free in mbedTLS Author...
Use After Free
Overview Affected versions of this package are vulnerable to Use After Free in the mbedtlsx509stringtonames function. An attacker can potentially achieve code execution, information disclosure, or cause a denial of service by triggering use of memory after it has been freed, such as by manipulati...
Covert Timing Channel
Overview Affected versions of this package are vulnerable to Covert Timing Channel in block cipher padding removal. An attacker can recover plaintext data by exploiting timing discrepancies during decryption when PKCS7 padding mode is used. Remediation Upgrade mbedtls to version 3.6.4 or higher...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the mbedtlsasn1storenameddata function. An attacker can cause a crash and denial of service by providing input that results in a NULL pointer with a non-zero length value. Note: This only affects application...
Fedora: Security Advisory (FEDORA-2025-d3585d3323)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2025-49600
A flaw was found in mbedtls. The mbedtlslmsverify function may accept forged Leighton-Micali signatures when hash computation fails and internal error conditions are not properly checked. This flaw allows an attacker with physical access to create invalid signatures. This issue occurs because...
CVE-2025-49601
A flaw was found in mbedtls. The mbedtlslmsimportpublickey function fails to validate input buffer size before reading a 32-bit field, potentially leading to an out-of-bounds read when processing truncated input. This flaw allows a network-based attacker to trigger this condition by providing a...
Fedora 42 : mbedtls (2025-d3585d3323)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-d3585d3323 advisory. - Update to 3.6.4 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.4 Tenable has extracted the preceding description block directl...
SUSE CVE-2025-49600
In MbedTLS 3.3.0 before 3.6.4, mbedtlslmsverify may accept invalid signatures if hash computation fails and internal errors go unchecked, enabling LMS Leighton-Micali Signature forgery in a fault scenario. Specifically, unchecked return values in mbedtlslmsverify allow an attacker who can induce ...
SUSE CVE-2025-49601
In MbedTLS 3.3.0 before 3.6.4, mbedtlslmsimportpublickey does not check that the input buffer is at least 4 bytes before reading a 32-bit field, allowing a possible out-of-bounds read on truncated input. Specifically, an out-of-bounds read in mbedtlslmsimportpublickey allows context-dependent...
Out-of-bounds Read
Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the mbedtlslmsimportpublickey function. An attacker can cause a crash or disclose limited adjacent memory by providing a truncated LMS public-key buffer that is less than four bytes in length. Workaround For the...
Missing Cryptographic Step
Overview Affected versions of this package are vulnerable to Missing Cryptographic Step in the mbedtlslmsverify process when internal errors from the createmerkleleafvalue and createmerkleinternalvalue functions are not checked. An attacker can cause the acceptance of invalid signatures by induci...
ALPINE-CVE-2025-49600
In MbedTLS 3.3.0 before 3.6.4, mbedtlslmsverify may accept invalid signatures if hash computation fails and internal errors go unchecked, enabling LMS Leighton-Micali Signature forgery in a fault scenario. Specifically, unchecked return values in mbedtlslmsverify allow an attacker who can induce ...
DEBIAN-CVE-2025-49600
In MbedTLS 3.3.0 before 3.6.4, mbedtlslmsverify may accept invalid signatures if hash computation fails and internal errors go unchecked, enabling LMS Leighton-Micali Signature forgery in a fault scenario. Specifically, unchecked return values in mbedtlslmsverify allow an attacker who can induce ...
CVE-2025-49600
In MbedTLS 3.3.0 before 3.6.4, mbedtlslmsverify may accept invalid signatures if hash computation fails and internal errors go unchecked, enabling LMS Leighton-Micali Signature forgery in a fault scenario. Specifically, unchecked return values in mbedtlslmsverify allow an attacker who can induce ...