CVE-2025-48965 | Mbed TLS up to 3.6.3 mbedtls_asn1_store_named_data null pointer dereference

Inserito da Angelo Barbosa | Lug 20, 2025 | CVE

A vulnerability classified as problematic was found in Mbed TLS up to 3.6.3. This vulnerability affects the function mbedtls_asn1_store_named_data. The manipulation leads to null pointer dereference.

This vulnerability was named CVE-2025-48965. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-48965 | Mbed TLS up to 3.6.3 mbedtls_asn1_store_named_data null pointer dereference

Post correlati

CVE-2025-7028 | GIGABYTE UEFI-SmiFlash 1.0.0 Software SMI SwSmiInputValue untrusted pointer dereference

CVE-2023-45929 | S-Lang 2.3.2 fixup_tgetstr memory corruption

CVE-2024-29973 | Zyxel NAS326/NAS542 prior 5.21 HTTP POST Request setCookie os command injection

CVE-2024-13029 | Antabot White-Jotter up to 0.2.2 Edit Book /admin/content/book server-side request forgery