CVE-2025-59438

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Mbed TLS versions through 3.6.4

Description Mbed TLS contains an Observable Timing Discrepancy. This issue may allow for timing attacks.

Recommendations Update to a version of Mbed TLS newer than 3.6.4.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

CVE-2025-59438

OPENSUSE-SU-2025:15662-1

OPENSUSE-SU-2025:15747-1

OPENSUSE-SU-2025:20035-1

OPENSUSE-SU-2026:10083-1

OPENSUSE-SU-2026:10378-1

OPENSUSE-SU-2026:20499-1

SUSE-SU-2026:1413-1

SUSE-SU-2026:20769-1

SUSE-SU-2026:21018-1

SUSE-SU-2026:21161-1

Debian

Mbed Tls