CVE-2026-25835

Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a Pseudo-Random Number Generator (PRNG).
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:arm:mbed_tls:*:*:*:*:*:*:*:*
cpe:2.3:a:trustedfirmware:mbed_tls:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:trustedfirmware:tf-psa-crypto:*:*:*:*:*:*:*:*

History

05 Jun 2026, 19:40

Type Values Removed Values Added
First Time Trustedfirmware tf-psa-crypto
Trustedfirmware
Trustedfirmware mbed Tls
CPE cpe:2.3:a:linaro:tf-psa-crypto:*:*:*:*:*:*:*:*
cpe:2.3:a:arm:mbed_tls:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:trustedfirmware:tf-psa-crypto:*:*:*:*:*:*:*:*
cpe:2.3:a:trustedfirmware:mbed_tls:4.0.0:*:*:*:*:*:*:*

01 Jun 2026, 17:05

Type Values Removed Values Added
CPE cpe:2.3:a:arm:tf-psa-crypto:*:*:*:*:*:*:*:* cpe:2.3:a:linaro:tf-psa-crypto:*:*:*:*:*:*:*:*
First Time Linaro tf-psa-crypto
Linaro

06 Apr 2026, 14:29

Type Values Removed Values Added
References () https://mbed-tls.readthedocs.io/en/latest/security-advisories/ - () https://mbed-tls.readthedocs.io/en/latest/security-advisories/ - Vendor Advisory
References () https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2026-03-rng-cloning/ - () https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2026-03-rng-cloning/ - Vendor Advisory
First Time Arm tf-psa-crypto
Arm
Arm mbed Tls
CPE cpe:2.3:a:arm:mbed_tls:*:*:*:*:*:*:*:*
cpe:2.3:a:arm:tf-psa-crypto:*:*:*:*:*:*:*:*
cpe:2.3:a:arm:mbed_tls:4.0.0:*:*:*:*:*:*:*

01 Apr 2026, 21:16

Type Values Removed Values Added
CWE CWE-335
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.7

01 Apr 2026, 19:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-04-01 19:16

Updated : 2026-06-17 10:25


NVD link : CVE-2026-25835

Mitre link : CVE-2026-25835

CVE.ORG link : CVE-2026-25835


JSON object : View

Products Affected

trustedfirmware

  • tf-psa-crypto
  • mbed_tls

arm

  • mbed_tls
CWE
CWE-335

Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)