VDB

CVE-2025-54764

CVE-2025-54764 PUBLISHED CVSS 6.199999809265137 MEDIUM

Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.

EPSS 0.02% · 6.7th percentile

Risk Scores

CVSS v3.1
6.199999809265137
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
0.02%
6.7th percentile

Affected Products

VendorProductVersions
armmbed_tls0
n/an/an/a

Timeline

  • Oct 20, 2025 CVE Published
  • Oct 21, 2025 EPSS Score
  • Oct 21, 2025 PoC Published
  • Oct 27, 2025 EPSS Score
  • Nov 2, 2025 EPSS Score
  • Nov 8, 2025 EPSS Score
  • Nov 10, 2025 CVE Updated
  • Nov 13, 2025 EPSS Score
  • Nov 19, 2025 EPSS Score
  • Nov 25, 2025 EPSS Score
  • Dec 1, 2025 EPSS Score
  • Dec 7, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›