CVE-2024-28836

MEDIUM

ARM Mbed TLS < 3.6.0 - Infinite Loop

Title source: rule

Description

An issue was discovered in Mbed TLS 3.5.x before 3.6.0. When negotiating the TLS version on the server side, it can fall back to the TLS 1.2 implementation of the protocol if it is disabled. If the TLS 1.2 implementation was disabled at build time, a TLS 1.2 client could put a TLS 1.3-only server into an infinite loop processing a TLS 1.2 ClientHello, resulting in a denial of service. If the TLS 1.2 implementation was disabled at runtime, a TLS 1.2 client can successfully establish a TLS 1.2 connection with the server.

References (2)

[Release Notes] https://github.com/Mbed-TLS/mbedtls/releases/tag/v3.6.0

[Vendor Advisory] https://mbed-tls.readthedocs.io/en/latest/tech-updates/security-advisories/

Scores

CVSS v3 5.4

EPSS 0.0011

EPSS Percentile 29.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-835

Status published

Products (1)

arm/mbed_tls 3.5.0 - 3.6.0

Published Apr 03, 2024

Tracked Since Feb 18, 2026