espressif
diff --git a/‎data/master-ff97953b32.json‎
Lines changed: 13 additions & 3 deletions b/‎data/master-ff97953b32.json‎
Lines changed: 13 additions & 3 deletions
diff --git a/‎data/release_v5.0-d9f9b7d8ed.json‎
Lines changed: 13 additions & 3 deletions b/‎data/release_v5.0-d9f9b7d8ed.json‎
Lines changed: 13 additions & 3 deletions
diff --git a/‎data/release_v5.1-dd37234fff.json‎
Lines changed: 13 additions & 3 deletions b/‎data/release_v5.1-dd37234fff.json‎
Lines changed: 13 additions & 3 deletions
diff --git a/‎data/release_v5.2-083e2bb56a.json‎
Lines changed: 13 additions & 3 deletions b/‎data/release_v5.2-083e2bb56a.json‎
Lines changed: 13 additions & 3 deletions
diff --git a/‎data/release_v5.3-13ec3f6f6f.json‎
Lines changed: 13 additions & 3 deletions b/‎data/release_v5.3-13ec3f6f6f.json‎
Lines changed: 13 additions & 3 deletions
diff --git a/‎data/release_v5.4-c94fdcdb48.json‎
Lines changed: 13 additions & 3 deletions b/‎data/release_v5.4-c94fdcdb48.json‎
Lines changed: 13 additions & 3 deletions
diff --git a/‎data/release_v5.5-f1a1df9b2e.json‎
Lines changed: 13 additions & 3 deletions b/‎data/release_v5.5-f1a1df9b2e.json‎
Lines changed: 13 additions & 3 deletions
diff --git a/‎data/scan_summary.json‎
Lines changed: 37 additions & 37 deletions b/‎data/scan_summary.json‎
Lines changed: 37 additions & 37 deletions
diff --git a/‎data/v5.0.1.json‎
Lines changed: 1 addition & 1 deletion b/‎data/v5.0.1.json‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎data/v5.0.2.json‎
Lines changed: 1 addition & 1 deletion b/‎data/v5.0.2.json‎
Lines changed: 1 addition & 1 deletion
@@ -1,9 +1,19 @@
 {
   "release_version": "master-ff97953b32",
-  "scan_date": "2025-10-31T00:28:13.733138Z",
+  "scan_date": "2025-11-01T00:29:36.938561Z",
   "tool_version": "0.21.0",
   "total_components": 0,
   "vulnerabilities": [
+    {
+      "cve_id": "CVE-2025-54764",
+      "component": "mbed_tls",
+      "component_version": "3.6.4",
+      "severity": "MEDIUM",
+      "score": "6.2",
+      "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+      "description": "Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.",
+      "link": "https://nvd.nist.gov/vuln/detail/CVE-2025-54764"
+    },
     {
       "cve_id": "CVE-2025-59438",
       "component": "mbed_tls",
@@ -16,11 +26,11 @@
     }
   ],
   "summary": {
-    "total_vulnerabilities": 1,
+    "total_vulnerabilities": 2,
     "by_severity": {
       "CRITICAL": 0,
       "HIGH": 0,
-      "MEDIUM": 1,
+      "MEDIUM": 2,
       "LOW": 0
     }
   },
 
@@ -1,6 +1,6 @@
 {
   "release_version": "release/v5.0-d9f9b7d8ed",
-  "scan_date": "2025-10-31T00:27:47.649794Z",
+  "scan_date": "2025-11-01T00:28:46.704170Z",
   "tool_version": "0.21.0",
   "total_components": 0,
   "vulnerabilities": [
@@ -24,6 +24,16 @@
       "description": "Mbed TLS before 3.6.4 has a race condition in AESNI detection if certain compiler optimizations occur. An attacker may be able to extract an AES key from a multithreaded program, or perform a GCM forgery.",
       "link": "https://nvd.nist.gov/vuln/detail/CVE-2025-52496"
     },
+    {
+      "cve_id": "CVE-2025-54764",
+      "component": "mbed_tls",
+      "component_version": "3.6.3",
+      "severity": "MEDIUM",
+      "score": "6.2",
+      "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+      "description": "Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.",
+      "link": "https://nvd.nist.gov/vuln/detail/CVE-2025-54764"
+    },
     {
       "cve_id": "CVE-2025-59438",
       "component": "mbed_tls",
@@ -86,11 +96,11 @@
     }
   ],
   "summary": {
-    "total_vulnerabilities": 8,
+    "total_vulnerabilities": 9,
     "by_severity": {
       "CRITICAL": 0,
       "HIGH": 2,
-      "MEDIUM": 6,
+      "MEDIUM": 7,
       "LOW": 0
     }
   },
 
@@ -1,9 +1,19 @@
 {
   "release_version": "release/v5.1-dd37234fff",
-  "scan_date": "2025-10-31T00:27:30.799896Z",
+  "scan_date": "2025-11-01T00:29:04.553699Z",
   "tool_version": "0.21.0",
   "total_components": 0,
   "vulnerabilities": [
+    {
+      "cve_id": "CVE-2025-54764",
+      "component": "mbed_tls",
+      "component_version": "3.6.4",
+      "severity": "MEDIUM",
+      "score": "6.2",
+      "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+      "description": "Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.",
+      "link": "https://nvd.nist.gov/vuln/detail/CVE-2025-54764"
+    },
     {
       "cve_id": "CVE-2025-59438",
       "component": "mbed_tls",
@@ -16,11 +26,11 @@
     }
   ],
   "summary": {
-    "total_vulnerabilities": 1,
+    "total_vulnerabilities": 2,
     "by_severity": {
       "CRITICAL": 0,
       "HIGH": 0,
-      "MEDIUM": 1,
+      "MEDIUM": 2,
       "LOW": 0
     }
   },
 
@@ -1,9 +1,19 @@
 {
   "release_version": "release/v5.2-083e2bb56a",
-  "scan_date": "2025-10-31T00:27:23.022452Z",
+  "scan_date": "2025-11-01T00:29:20.302992Z",
   "tool_version": "0.21.0",
   "total_components": 0,
   "vulnerabilities": [
+    {
+      "cve_id": "CVE-2025-54764",
+      "component": "mbed_tls",
+      "component_version": "3.6.4",
+      "severity": "MEDIUM",
+      "score": "6.2",
+      "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+      "description": "Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.",
+      "link": "https://nvd.nist.gov/vuln/detail/CVE-2025-54764"
+    },
     {
       "cve_id": "CVE-2025-59438",
       "component": "mbed_tls",
@@ -16,11 +26,11 @@
     }
   ],
   "summary": {
-    "total_vulnerabilities": 1,
+    "total_vulnerabilities": 2,
     "by_severity": {
       "CRITICAL": 0,
       "HIGH": 0,
-      "MEDIUM": 1,
+      "MEDIUM": 2,
       "LOW": 0
     }
   },
 
@@ -1,9 +1,19 @@
 {
   "release_version": "release/v5.3-13ec3f6f6f",
-  "scan_date": "2025-10-31T00:28:05.485600Z",
+  "scan_date": "2025-11-01T00:29:12.764566Z",
   "tool_version": "0.21.0",
   "total_components": 0,
   "vulnerabilities": [
+    {
+      "cve_id": "CVE-2025-54764",
+      "component": "mbed_tls",
+      "component_version": "3.6.4",
+      "severity": "MEDIUM",
+      "score": "6.2",
+      "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+      "description": "Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.",
+      "link": "https://nvd.nist.gov/vuln/detail/CVE-2025-54764"
+    },
     {
       "cve_id": "CVE-2025-59438",
       "component": "mbed_tls",
@@ -16,11 +26,11 @@
     }
   ],
   "summary": {
-    "total_vulnerabilities": 1,
+    "total_vulnerabilities": 2,
     "by_severity": {
       "CRITICAL": 0,
       "HIGH": 0,
-      "MEDIUM": 1,
+      "MEDIUM": 2,
       "LOW": 0
     }
   },
 
@@ -1,9 +1,19 @@
 {
   "release_version": "release/v5.4-c94fdcdb48",
-  "scan_date": "2025-10-31T00:27:57.149367Z",
+  "scan_date": "2025-11-01T00:29:28.655456Z",
   "tool_version": "0.21.0",
   "total_components": 0,
   "vulnerabilities": [
+    {
+      "cve_id": "CVE-2025-54764",
+      "component": "mbed_tls",
+      "component_version": "3.6.4",
+      "severity": "MEDIUM",
+      "score": "6.2",
+      "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+      "description": "Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.",
+      "link": "https://nvd.nist.gov/vuln/detail/CVE-2025-54764"
+    },
     {
       "cve_id": "CVE-2025-59438",
       "component": "mbed_tls",
@@ -16,11 +26,11 @@
     }
   ],
   "summary": {
-    "total_vulnerabilities": 1,
+    "total_vulnerabilities": 2,
     "by_severity": {
       "CRITICAL": 0,
       "HIGH": 0,
-      "MEDIUM": 1,
+      "MEDIUM": 2,
       "LOW": 0
     }
   },
 
@@ -1,9 +1,19 @@
 {
   "release_version": "release/v5.5-f1a1df9b2e",
-  "scan_date": "2025-10-31T00:27:39.201731Z",
+  "scan_date": "2025-11-01T00:28:56.332338Z",
   "tool_version": "0.21.0",
   "total_components": 0,
   "vulnerabilities": [
+    {
+      "cve_id": "CVE-2025-54764",
+      "component": "mbed_tls",
+      "component_version": "3.6.4",
+      "severity": "MEDIUM",
+      "score": "6.2",
+      "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+      "description": "Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.",
+      "link": "https://nvd.nist.gov/vuln/detail/CVE-2025-54764"
+    },
     {
       "cve_id": "CVE-2025-59438",
       "component": "mbed_tls",
@@ -16,11 +26,11 @@
     }
   ],
   "summary": {
-    "total_vulnerabilities": 1,
+    "total_vulnerabilities": 2,
     "by_severity": {
       "CRITICAL": 0,
       "HIGH": 0,
-      "MEDIUM": 1,
+      "MEDIUM": 2,
       "LOW": 0
     }
   },
 
@@ -1,61 +1,61 @@
 {
-  "last_updated": "2025-10-31T00:28:13.733740Z",
+  "last_updated": "2025-11-01T00:29:36.939095Z",
   "scanned_versions": [
-    "v5.1.2",
-    "v5.5.1",
-    "v5.1.6",
+    "v5.0.2",
+    "v5.0.6",
+    "v5.1.3",
+    "v5.0",
+    "v5.4.3",
+    "v5.2.3",
+    "v5.2.4",
+    "v5.0.9",
     "v5.4.2",
-    "v5.3.1",
-    "v5.2",
-    "v5.0.1",
+    "v5.3",
+    "v5.0.8",
     "v5.2.2",
-    "v5.3.2",
+    "v5.4",
+    "v5.0.4",
+    "v5.2.1",
     "v5.5",
-    "v5.0.2",
+    "v5.1",
     "v5.2.5",
-    "v5.3.3",
-    "v5.2.4",
+    "v5.0.1",
+    "v5.1.5",
+    "v5.1.1",
     "v5.0.3",
-    "v5.0.9",
+    "v5.0.5",
     "v5.3.4",
-    "v5.0.8",
-    "v5.4.3",
-    "v5.1.3",
-    "v5.1.1",
+    "v5.2.6",
+    "v5.3.1",
+    "v5.1.6",
+    "v5.3.2",
+    "v5.3.3",
+    "v5.0.7",
+    "v5.2",
     "v5.4.1",
-    "v5.1",
+    "v5.1.2",
+    "v5.5.1",
     "v5.1.4",
-    "v5.0.5",
-    "v5.0",
-    "v5.1.5",
-    "v5.2.3",
-    "v5.0.7",
-    "v5.0.6",
-    "v5.0.4",
-    "v5.2.1",
-    "v5.2.6",
-    "v5.4",
-    "v5.3",
-    "release/v5.2-083e2bb56a",
-    "release/v5.1-dd37234fff",
-    "release/v5.5-f1a1df9b2e",
     "release/v5.0-d9f9b7d8ed",
-    "release/v5.4-c94fdcdb48",
+    "release/v5.5-f1a1df9b2e",
+    "release/v5.1-dd37234fff",
     "release/v5.3-13ec3f6f6f",
+    "release/v5.2-083e2bb56a",
+    "release/v5.4-c94fdcdb48",
     "master-ff97953b32"
   ],
   "failed_versions": [
-    "release/v5.2",
-    "release/v5.1",
-    "release/v5.5",
     "release/v5.0",
-    "release/v5.4",
+    "release/v5.5",
+    "release/v5.1",
     "release/v5.3",
+    "release/v5.2",
+    "release/v5.4",
     "master"
   ],
   "total_scanned": 42,
   "scan_method": "git-batch",
-  "workflow_run": "120",
+  "workflow_run": "121",
   "scanner_info": {
     "tool": "esp-idf-security-dashboard",
     "esp_idf_sbom_version": "0.21.0",
 
@@ -1,6 +1,6 @@
 {
   "release_version": "v5.0.1",
-  "scan_date": "2025-10-31T00:23:45.863605Z",
+  "scan_date": "2025-11-01T00:26:32.456146Z",
   "tool_version": "0.21.0",
   "total_components": 0,
   "vulnerabilities": [],
 
@@ -1,6 +1,6 @@
 {
   "release_version": "v5.0.2",
-  "scan_date": "2025-10-31T00:24:15.245818Z",
+  "scan_date": "2025-11-01T00:24:13.995167Z",
   "tool_version": "0.21.0",
   "total_components": 0,
   "vulnerabilities": [],
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"release_version": "v5.0.1",`
`3`		`- "scan_date": "2025-10-31T00:23:45.863605Z",`
	`3`	`+ "scan_date": "2025-11-01T00:26:32.456146Z",`
`4`	`4`	`"tool_version": "0.21.0",`
`5`	`5`	`"total_components": 0,`
`6`	`6`	`"vulnerabilities": [],`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"release_version": "v5.0.2",`
`3`		`- "scan_date": "2025-10-31T00:24:15.245818Z",`
	`3`	`+ "scan_date": "2025-11-01T00:24:13.995167Z",`
`4`	`4`	`"tool_version": "0.21.0",`
`5`	`5`	`"total_components": 0,`
`6`	`6`	`"vulnerabilities": [],`