The client 802.11 mac implementation in Espressif ESP8266_NONOS_SDK 2.2.0 through 3.1.0 does not validate correctly the RSN AuthKey suite list count in beacon frames, probe responses, and association responses, which allows attackers in radio range to cause a denial of service (crash) via a crafted message.
CPE | Name | Operator | Version |
---|---|---|---|
arduino_esp8266 | le | 2.5.2 | |
esp8266_nonos_sdk | ge | 2.2.0 | |
esp8266_nonos_sdk | le | 3.1.0 |