Skip to main content

Mbed TLS CVE-2026-25835

| EUVDEUVD-2026-17999 HIGH
Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) (CWE-335)
2026-04-01 mitre
7.7
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.7 HIGH
AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
SUSE
HIGH
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Lifecycle Timeline

4
Patch released
Apr 10, 2026 - 08:30 nvd
Patch available
EUVD ID Assigned
Apr 01, 2026 - 19:00 euvd
EUVD-2026-17999
Analysis Generated
Apr 01, 2026 - 19:00 vuln.today
CVE Published
Apr 01, 2026 - 00:00 nvd
HIGH 7.7

DescriptionCVE.org

Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a Pseudo-Random Number Generator (PRNG).

AnalysisAI

Mbed TLS before version 3.6.6 and TF-PSA-Crypto before version 1.1.0 contain a PRNG seed misuse vulnerability that enables information disclosure. An attacker who gains access to a seeded PRNG instance can potentially predict or replicate pseudo-random number generation, compromising cryptographic material confidentiality. The vulnerability affects cryptographic libraries used in embedded systems and IoT devices, with confirmed availability of vendor security advisories but no CVSS score assigned at time of analysis.

Technical ContextAI

The vulnerability exists in the pseudo-random number generator (PRNG) implementation within Mbed TLS and TF-PSA-Crypto cryptographic libraries. These libraries provide cryptographic primitives for embedded and resource-constrained systems. The root cause involves improper seed handling in the PRNG initialization or state management, which falls under information disclosure risks in cryptographic implementations. PRNG seed misuse can allow attackers to reproduce the same sequence of random numbers if they obtain knowledge of the seed value or initial state, defeating the entropy guarantees that cryptographic protocols depend upon for generating unique session keys, nonces, and other security-critical random values.

RemediationAI

Upgrade Mbed TLS to version 3.6.6 or later, and upgrade TF-PSA-Crypto to version 1.1.0 or later. Applications dependent on these libraries should prioritize patching, particularly those handling sensitive cryptographic operations. Consult the official security advisories at https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2026-03-rng-cloning/ for vendor-specific guidance on patch deployment, configuration updates, and any interim mitigations. Organizations should verify that their embedded systems and IoT deployments are updated with patched versions of both libraries.

Vendor StatusVendor

SUSE

Severity: High
Product Status
openSUSE Tumbleweed Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise Micro 5.2 Fixed

Share

CVE-2026-25835 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy