Vulnerabilites related to Mbed - mbedtls
cve-2025-27809
Vulnerability from cvelistv5
Published
2025-03-25 00:00
Modified
2025-03-25 16:49
Severity ?
EPSS score ?
Summary
Mbed TLS before 2.28.10 and 3.x before 3.6.3, on the client side, accepts servers that have trusted certificates for arbitrary hostnames unless the TLS client application calls mbedtls_ssl_set_hostname.
References
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2025-27809", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2025-03-25T14:41:49.022536Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-03-25T14:42:17.226Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2025-03-25T16:49:13.269Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { url: "https://mastodon.social/@bagder/114219540623402700", }, { url: "https://github.com/Mbed-TLS/mbedtls/issues/466", }, ], title: "CVE Program Container", x_generator: { engine: "ADPogram 0.0.1", }, }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "mbedtls", vendor: "Mbed", versions: [ { lessThan: "2.28.10", status: "affected", version: "0", versionType: "semver", }, { lessThan: "3.6.3", status: "affected", version: "3.0.0", versionType: "semver", }, ], }, ], cpeApplicability: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mbed:mbedtls:*:*:*:*:*:*:*:*", versionEndExcluding: "2.28.10", vulnerable: true, }, { criteria: "cpe:2.3:a:mbed:mbedtls:*:*:*:*:*:*:*:*", versionEndExcluding: "3.6.3", versionStartIncluding: "3.0.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], descriptions: [ { lang: "en", value: "Mbed TLS before 2.28.10 and 3.x before 3.6.3, on the client side, accepts servers that have trusted certificates for arbitrary hostnames unless the TLS client application calls mbedtls_ssl_set_hostname.", }, ], metrics: [ { cvssV3_1: { baseScore: 5.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-1188", description: "CWE-1188 Initialization of a Resource with an Insecure Default", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-03-25T05:33:08.068Z", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { url: "https://github.com/Mbed-TLS/mbedtls/releases", }, { url: "https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-03-1/", }, ], x_generator: { engine: "enrichogram 0.0.1", }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2025-27809", datePublished: "2025-03-25T00:00:00.000Z", dateReserved: "2025-03-07T00:00:00.000Z", dateUpdated: "2025-03-25T16:49:13.269Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2025-27810
Vulnerability from cvelistv5
Published
2025-03-25 00:00
Modified
2025-03-25 14:37
Severity ?
EPSS score ?
Summary
Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uses uninitialized stack memory to compose the TLS Finished message, potentially leading to authentication bypasses such as replays.
References
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2025-27810", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2025-03-25T14:36:57.836676Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-03-25T14:37:14.294Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "mbedtls", vendor: "Mbed", versions: [ { lessThan: "2.28.10", status: "affected", version: "0", versionType: "semver", }, { lessThan: "3.6.3", status: "affected", version: "3.0.0", versionType: "semver", }, ], }, ], cpeApplicability: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mbed:mbedtls:*:*:*:*:*:*:*:*", versionEndExcluding: "2.28.10", vulnerable: true, }, { criteria: "cpe:2.3:a:mbed:mbedtls:*:*:*:*:*:*:*:*", versionEndExcluding: "3.6.3", versionStartIncluding: "3.0.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], descriptions: [ { lang: "en", value: "Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uses uninitialized stack memory to compose the TLS Finished message, potentially leading to authentication bypasses such as replays.", }, ], metrics: [ { cvssV3_1: { baseScore: 5.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-908", description: "CWE-908 Use of Uninitialized Resource", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-03-25T05:46:03.559Z", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { url: "https://github.com/Mbed-TLS/mbedtls/releases", }, { url: "https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-03-2/", }, ], x_generator: { engine: "enrichogram 0.0.1", }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2025-27810", datePublished: "2025-03-25T00:00:00.000Z", dateReserved: "2025-03-07T00:00:00.000Z", dateUpdated: "2025-03-25T14:37:14.294Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }