CVE-2025-52497

Published: Jul 4, 2025
Updated: Jul 5, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2025-52497" target="_blank" rel="noopener"> CVE-2025-52497
Exploit:

Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in mbedtls_pem_read_buffer and two mbedtls_pk_parse functions, via untrusted PEM input.