Multiple vulnerabilities in ARM mbed TLS
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 7 |
| CVE-ID | CVE-2025-49600 CVE-2025-49601 CVE-2025-52496 CVE-2025-52497 CVE-2025-49087 CVE-2025-48965 CVE-2025-47917 |
| CWE-ID | CWE-252 CWE-125 CWE-362 CWE-385 CWE-476 CWE-416 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
mbed TLS Universal components / Libraries / Libraries used by multiple products |
| Vendor | ARM |
Security Bulletin
This security bulletin contains information about 7 vulnerabilities.
1) Unchecked Return Value
EUVDB-ID: #VU112447
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-49600
CWE-ID:
CWE-252 - Unchecked Return Value
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass signature verification.
The vulnerability exists due to unchecked return value in mbedtls_lms_verify(). A remote attacker can bypass LMS signature verification process.
MitigationInstall updates from vendor's website.
Vulnerable software versionsmbed TLS: 3.3.0 - 3.6.3
CPE2.3- cpe:2.3:a:arm:mbed_tls:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.3:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Out-of-bounds read
EUVDB-ID: #VU112446
Risk: Medium
CVSSv4.0: 6.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-49601
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in mbedtls_lms_import_public_key(). A remote attacker can pass specially crafted LMS public key to the application, trigger an out-of-bounds read error and read contents of memory on the system or perform a denial of service attack.
MitigationInstall updates from vendor's website.
Vulnerable software versionsmbed TLS: 3.3.0 - 3.6.3
CPE2.3- cpe:2.3:a:arm:mbed_tls:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.3:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Race condition
EUVDB-ID: #VU112445
Risk: Medium
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-52496
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform MitM attack.
The vulnerability exists due to a race condition on x86 and amd64 systems that have the AESNI instruction, as it can be used for AES encryption and decryption. A remote attacker can extract AES keys from multithreaded programs and use them to decrypt traffic.
MitigationInstall updates from vendor's website.
Vulnerable software versionsmbed TLS: 3.0.0 - 3.6.3
CPE2.3- cpe:2.3:a:arm:mbed_tls:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.3:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Out-of-bounds read
EUVDB-ID: #VU112444
Risk: Medium
CVSSv4.0: 6.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-52497
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition when parsing invalid PEM-encrypted material in mbedtls_pk_parse_key(), mbedtls_pk_parse_keyfile() and mbedtls_pem_read_buffer() functions. A remote attacker can pass specially crafted data to the application, trigger an out-of-bounds read error and read contents of memory on the system or perform a denial of service attack.
MitigationInstall updates from vendor's website.
Vulnerable software versionsmbed TLS: 3.0.0 - 3.6.3
CPE2.3- cpe:2.3:a:arm:mbed_tls:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.3:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Covert Timing Channel
EUVDB-ID: #VU112443
Risk: Medium
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-49087
CWE-ID:
CWE-385 - Covert Timing Channel
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform MitM attack.
The vulnerability exists due to a timing side channel attack on its implementation of PKCS#7 padding removal. A remote attacker with access to timing information and a decryption oracle can recover the last byte of each plaintext block. If some portion of the plaintext is controlled by the attacker as is often the case, the whole plaintext can be recovered.
MitigationInstall updates from vendor's website.
Vulnerable software versionsmbed TLS: 3.6.1 - 3.6.3
CPE2.3- cpe:2.3:a:arm:mbed_tls:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.3:*:*:*:*:*:*:*
https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-06-5/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) NULL pointer dereference
EUVDB-ID: #VU112442
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-48965
CWE-ID:
CWE-476 - NULL Pointer Dereference
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error within the mbedtls_asn1_store_named_data() function. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.
MitigationInstall updates from vendor's website.
Vulnerable software versionsmbed TLS: 3.0.0 - 3.6.3
CPE2.3- cpe:2.3:a:arm:mbed_tls:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.3:*:*:*:*:*:*:*
https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-06-6/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Use-after-free
EUVDB-ID: #VU112441
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2025-47917
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a use-after-free error within the mbedtls_x509_string_to_names() function. A remote attacker can send specially crafted data to the application, trigger a use-after-free error and execute arbitrary code on the system.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsmbed TLS: 3.0.0 - 3.6.3
CPE2.3- cpe:2.3:a:arm:mbed_tls:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:3.6.3:*:*:*:*:*:*:*
https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-06-7/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
