Vulnerability in N/a

CVE-2026-34872

An issue was discovered in Mbed TLS 3.5.x and 3.6.x through 3.6.5 and TF-PSA-Crypto 1.0. There is a lack of contributory behavior in FFDH due to improper input validation. Using finite-field Diffie-Hellman, the other party can force the sh…

EPSS: 0.000 (1.3th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References