CVE-2026-34873 | Echo CVE Advisory

Vulnerability Database>CVE-2026-34873

CVE-2026-34873

‍

Publish date: May 28, 2026

Severity

Critical

CVSS score

9.1

Package

mbedtls

Affected versions

>= 3.6.5-0.1~deb13u1, < 3.6.6

An issue was discovered in Mbed TLS 3.5.0 through 4.0.0. Client impersonation can occur while resuming a TLS 1.3 session.

‍

Learn about Echo's vulnerability management

NVD Record:

https://nvd.nist.gov/vuln/detail/CVE-2026-34873

References:

Related CVEs: