Home
Packages
Vulnerabilities
Vendors
Report
Policy
Login
Signup
« List of all CVEs
CVE-2025-59438
Published:
10/21/2025
Last updated:
10/21/2025
Reserved:
9/16/2025
Mbed TLS through 3.6.4 has an Observable Timing Discrepancy.
CNA assigner:
mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca)
Requested by:
n/a
Metrics
Version
Score
Severity
Vector String
3.1
5.3
Medium
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Opam packages affected (1)
conf-mbedtls
Products affected (1)
Product
Vendor
Version
n/a
n/a
QCA6574AU
References (2)
https://mbed-tls.readthedocs.io/en/latest/tech-updates/security-advisories/
https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-10-invalid-padding-error/