CVE-2025-52497

4.8MEDIUM

Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in mbedtls_pem_read_buffer and two mbedtls_pk_parse functions, via untrusted PEM input.

Publicado: 7/4/2025Actualizado: 11/3/2025
Ver en NVDVer en MITRE

Descripción

Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in mbedtls_pem_read_buffer and two mbedtls_pk_parse functions, via untrusted PEM input.

Análisis IAImpulsado por IA

Productos Afectados

armmbed_tls

Referencias