ГлавнаяУязвимости → CVE-2026-25835
7.7высокая

CVE-2026-25835

Описание

Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a Pseudo-Random Number Generator (PRNG).

Затрагиваемое ПО
Arm Mbed tlsTrustedfirmware Mbed tlsTrustedfirmware Tf-psa-crypto
CVSS
Балл7.7 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Источники
https://mbed-tls.readthedocs.io/en/latest/security-advisories/https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2026-03-rng-cloning/