CVE-2025-48965

Published
View on NVD ↗
CVSS v3
4
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT

Description

Mbed TLS before 3.6.4 has a NULL pointer dereference because mbedtls_asn1_store_named_data can trigger conflicting data with val.p of NULL but val.len greater than zero.

Mbed-TLS/mbedtls-docs
Mbed-TLS/mbedtls-docs
Version-independent documentation for Mbed TLS
GitHubGitHub
22