Mbed TLS 3.2.x up to and including 3.4.x prior to 3.5 has a Buffer Overflow that can lead to remote Code execution.
arm mbed tls