Unrated severityNVD Advisory· Published Jul 4, 2025· Updated Nov 3, 2025
CVE-2025-52497
CVE-2025-52497
Description
Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in mbedtls_pem_read_buffer and two mbedtls_pk_parse functions, via untrusted PEM input.
Affected products
2- Mbed/mbedtlsv5Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.