CVE-2026-25833Stack-based Buffer Overflow in ARM Mbed TLS

CWE-121Stack-based Buffer Overflow9 documents7 sources
Severity
7.5HIGHNVD
EPSS
0.0%
top 84.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
ARM Mbed TLS
Timeline
PublishedApr 1
Latest updateApr 2

Description

Mbed TLS 3.5.0 to 3.6.5 fixed in 3.6.6 and 4.1.0 has a buffer overflow in the x509_inet_pton_ipv6() function

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

NVDarm/mbed_tls3.5.03.6.6+1

🔴Vulnerability Details

4
OSV
CVE-2026-25833: (Mbed TLS 32026-04-02
CVEList
CVE-2026-25833: Mbed TLS 32026-04-01
OSV
CVE-2026-25833: Mbed TLS 32026-04-01
GHSA
GHSA-jr87-qch5-gjc6: Mbed TLS 32026-04-01

📋Vendor Advisories

1
Debian
CVE-2026-25833: mbedtls - Mbed TLS 3.5.0 to 3.6.5 fixed in 3.6.6 and 4.1.0 has a buffer overflow in the x5...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-25833 Impact, Exploitability, and Mitigation Steps | Wiz

💬Community

2
Bugzilla
CVE-2026-25833 micropython: buffer underflow in x509_inet_pton_ipv6() [fedora-all]2026-04-01
Bugzilla
CVE-2026-25833 mbedtls: buffer underflow in x509_inet_pton_ipv6() [fedora-all]2026-04-01
CVE-2026-25833 — Stack-based Buffer Overflow in ARM | cvebase