CNNVD-202507-2579 Information

CNNVD ID

CNNVD-202507-2579

Related CVE

CVE-2025-48965

• CNNVD Published: 2025-07-20

Description (Chinese)

Mbed TLS是Mbed TLS开源的一个开源、可移植、易于使用、可读且灵活的 SSL 库。 Mbed TLS 3.6.4之前版本存在安全漏洞，该漏洞源于空指针取消引用。

Description (English)

Mbed TLS is an open source, portable, user-friendly, readable and flexible SSL library for Mbed TLS. There was a security loophole in the previous version of Mbed TLS 3.6.4, which resulted from the elimination of the reference to the empty pointer.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Mbed TLS

Published

2025-07-20

Last Modified

2026-02-24

References

https://github.com/Mbed-TLS/mbedtls-docs/blob/main/security-advisories/mbedtls-security-advisory-2025-06-6.md https://mbed-tls.readthedocs.io/en/latest/tech-updates/security-advisories/

Patch

https://github.com/Mbed-TLS/mbedtls/releases