PT-2026-29582 · Arm · Tf-Psa-Crypto+1

Haruto Kimura

+1

·

Published

2026-04-01

·

Updated

2026-05-18

·

CVE-2026-34875

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Mbed TLS versions through 3.6.5 TF-PSA-Crypto version 1.0.0
Description A buffer overflow can occur during the public key export process for FFDH keys.
Recommendations Update Mbed TLS to a version later than 3.6.5. Update TF-PSA-Crypto to a version later than 1.0.0.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2026-34875
ECHO-D2FF-7E29-2B4B
OPENSUSE-SU-2026:10498-1

Affected Products

Mbed Tls
Tf-Psa-Crypto