CVE-2017-14032EPSS p70.8%

CVE-2017-14032CVE-2017-14032

arm / mbed_tls

Description

ARM mbed TLS before 1.3.21 and 2.x before 2.1.9, if optional authentication is configured, allows remote attackers to bypass peer authentication via an X.509 certificate chain with many intermediates. NOTE: although mbed TLS was formerly known as PolarSSL, the releases shipped with the PolarSSL name are not affected.

Scoring

CVSS 8.1 ()
VectorCVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS1.49% probability of exploitation · percentile 70.8% · 2026-06-19T12:03:05Z
Last modified2026-06-05

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2018-9989
CVE
CVE-2018-9988
CVE
CVE-2018-19608
CVE
CVE-2015-8036
CVE
CVE-2015-5291
CVE
CVE-2017-2784
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.