2 matches found
CVE-2019-12587
The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 and ESP8266NONOSSDK 2.2.0 through 3.1.0 allows the installation of a zero Pairwise Master Key PMK after the completion of any EAP authentication method, which allows attackers in radio range to replay, decrypt, or spoof frames v...
PT-2020-13626 · Espressif · Esp32
Name of the Vulnerable Software and Affected Versions: ESP32 affected versions not specified Description: The issue concerns bypassing Secure Boot and Flash Encryption on ESP32 chips. It allows extracting decrypted flash data from a fully protected ESP32 chip using chip-level weaknesses, without...