5 matches found
CVE-2025-68656
Espressif ESP-IDF USB Host HID Human Interface Device Driver allows access to HID devices. Prior to 1.1.0, usbclassrequestgetdescriptor frees and reallocates hiddevice-ctrlxfer when an oversized descriptor is requested but continues to use the stale local pointer, leading to an immediate...
The vulnerability of the Secure Boot component in Espressif Systems’ ESP series microcontrollers allows a hacker to redirect the execution of commands to an arbitrary address.
The vulnerability of the Secure Boot v2 component in Espressif Systems’ microcontrollers is related to synchronization errors when using a common resource “Race Condition”. Exploiting this vulnerability could allow an attacker to redirect the execution of commands to an arbitrary address...
Espressif Systems esptool Security Vulnerability
Espressif Systems esptool is a Python-based, open-source, platform-independent utility program from Espressif Systems that communicates with the ROM bootloader in the Espressif chip. A security vulnerability exists in Espressif Systems esptool version 4.6.2. An attacker could exploit this...
BrakTooth Bluetooth vulnerabilities, crash all the devices!
Security researchers have revealed details about a set of 16 vulnerabilities that impact the Bluetooth software stack that ships with System-on-Chip SoC boards from several popular vendors. The same group of researchers disclosed the SweynTooth vulnerabilities in February 2020. They decided to du...
PT-2019-12875
Name of the Vulnerable Software and Affected Versions Espressif ESP-IDF versions 2.0.0 through 4.0.0 Espressif ESP8266 NONOS SDK versions 2.2.0 through 3.1.0 Description The issue concerns the EAP peer implementation, which processes EAP Success messages prematurely. This allows attackers within...