CVE-2025-49601

MEDIUM

MbedTLS 3.3.0-3.6.3 - Out-of-bounds Read in mbedtls_lms_import_public_key

Title source: llm

Description

In MbedTLS 3.3.0 before 3.6.4, mbedtls_lms_import_public_key does not check that the input buffer is at least 4 bytes before reading a 32-bit field, allowing a possible out-of-bounds read on truncated input. Specifically, an out-of-bounds read in mbedtls_lms_import_public_key allows context-dependent attackers to trigger a crash or limited adjacent-memory disclosure by supplying a truncated LMS (Leighton-Micali Signature) public-key buffer under four bytes. An LMS public key starts with a 4-byte type indicator. The function mbedtls_lms_import_public_key reads this type indicator before validating the size of its input.

References (1)

Core 1

Core References

Third Party Advisory

https://github.com/Mbed-TLS/mbedtls-docs/blob/main/security-advisories/mbedtls-security-advisory-2025-06-4.md

View Writeup ZIP pw:eip

Scores

CVSS v3 4.8

EPSS 0.0026

EPSS Percentile 17.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-125

Status published

Products (2)

arm/mbed_tls 3.3.0 - 3.6.4

trustedfirmware/mbed_tls 3.3.0 - 3.6.4

Published Jul 04, 2025

Tracked Since Feb 18, 2026