Hey3Eo

**Name of the Vulnerable Software and Affected Versions** Mbed TLS versions through 3.5.1 **Description** An issue was discovered in the mbedtls ssl session reset function, where the maximum negotiable TLS version is mishandled. For example, if the last connection negotiated TLS 1.2, then 1.2 becomes the new maximum. **Recommendations** For Mbed TLS versions through 3.5.1, consider updating to a version that fixes the issue in the mbedtls ssl session reset function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mbed TLS version 3.5.1 **Description** An issue was discovered in Mbed TLS where there is persistent handshake denial if a client sends a TLS 1.3 ClientHello without extensions. **Recommendations** For Mbed TLS version 3.5.1, consider updating to a newer version that addresses this issue, as the current version may cause persistent handshake denial under specific conditions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.