Unrated severityNVD Advisory· Published Oct 21, 2025· Updated Oct 21, 2025
CVE-2025-59438
CVE-2025-59438
Description
Mbed TLS through 3.6.4 has an Observable Timing Discrepancy.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
14- Mbed TLS/Mbed TLSdescription
- osv-coords12 versionspkg:rpm/opensuse/mbedtls&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/micropython&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/micropython&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/ovmf&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/ovmf&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/vlang&distro=openSUSE%20Tumbleweedpkg:rpm/suse/ovmf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP7pkg:rpm/suse/ovmf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP7pkg:rpm/suse/ovmf&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/ovmf&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/ovmf&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/ovmf&distro=SUSE%20Linux%20Micro%206.2
< 3.6.5-1.1+ 11 more
- (no CPE)range: < 3.6.5-1.1
- (no CPE)range: < 1.26.0-bp160.1.1
- (no CPE)range: < 1.26.0-2.1
- (no CPE)range: < 202502-160000.4.1
- (no CPE)range: < 202602-5.1
- (no CPE)range: < 0.5-2.1
- (no CPE)range: < 202408-150700.3.15.1
- (no CPE)range: < 202408-150700.3.15.1
- (no CPE)range: < 202502-160000.4.1
- (no CPE)range: < 202502-160000.4.1
- (no CPE)range: < 202402-slfo.1.1_2.1
- (no CPE)range: < 202502-160000.4.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.