CVE-2026-25834

Mbed TLS v3.3.0 up to 3.6.5 and 4.0.0 allows Algorithm Downgrade.

medium 6.5 CVSS 3.1

Published: Apr 1, 2026

Modified: Jun 5, 2026

Vendor: Trustedfirmware

Product: Mbed Tls

Versions: 4.0.0

Description

Mbed TLS v3.3.0 up to 3.6.5 and 4.0.0 allows Algorithm Downgrade.

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L