CVE-2025-66442 | mbed TLS up to 4.0.0 RSA/CBC/ECB covert timing channel

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability described as problematic has been identified in mbed TLS up to 4.0.0. This affects an unknown function of the component RSA/CBC/ECB. Such manipulation leads to covert timing channel.

This vulnerability is listed as CVE-2025-66442. The attack may be performed from remote. There is no available exploit.

CVE-2025-66442 | mbed TLS up to 4.0.0 RSA/CBC/ECB covert timing channel

Post correlati

CVE-2024-6416 | SeaCMS 12.9 cid sql injection

CVE-2024-52064 | RTI Connext Professional up to 5.3.1.44/6.0.1.39/6.1.2.20/7.3.0.1 Core Libraries buffer overflow

CVE-2024-7378 | SourceCodester Simple Realtime Quiz System 1.0 /manage_question.php id sql injection

CVE-2026-2682 | Tsinghua Unigroup Electronic Archives System up to 3.2.210802(62532) prinReport.html?token=java comid sql injection