CVE-2025-52497

ADVISORY - nist

Summary

Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in mbedtls_pem_read_buffer and two mbedtls_pk_parse functions, via untrusted PEM input.

EPSS Score⁠: 0.001 (0.276)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-193⁠

Off-by-one Error

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.