Lucene search
K

170 matches found

Vulnrichment
Vulnrichment
added 2026/05/12 9:56 p.m.11 views

CVE-2026-42855 arduino-esp32: Digest authentication URI mismatch bypass in WebServer allows cross-resource replay attack

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, the WebServer Digest authentication implementation in arduino-esp32 computes the authentication hash using the URI field from the client's Authorization header,...

7.5CVSS5.8AI score0.00351EPSS
Exploits1References1
CVE
CVE
added 2026/05/12 9:56 p.m.24 views

CVE-2026-42855

The vulnerability affects the arduino-esp32 core (WebServer Digest authentication). Before version 3.3.8, the Digest auth hash is computed from the URI field in the Authorization header without validating it against the actually requested URI. As a result, an attacker with any valid digest respon...

7.5CVSS5.8AI score0.00351EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/12 9:56 p.m.9 views

CVE-2026-42855

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, the WebServer Digest authentication implementation in arduino-esp32 computes the authentication hash using the URI field from the client's Authorization header,...

7.5CVSS5.8AI score0.00351EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.15 views

PT-2026-40454

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, the WebServer multipart form parser in arduino-esp32 allocates a Variable Length Array VLA on the stack whose size is derived from an attacker-controlled HTTP head...

9.8CVSS6.2AI score0.00571EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

arduino-esp32 安全漏洞

Arduino-ESP32 is an open-source project by Espressif, designed for use with the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6, and ESP32-H2 boards. Versions of Arduino-ESP32 prior to 3.3.8 contained a security vulnerability. This vulnerability stemmed from the WebServer multi-part form parser’s...

9.8CVSS6.2AI score0.00571EPSS
Exploits1References1
NVD
NVD
added 2026/04/24 8:16 p.m.9 views

CVE-2026-41429

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, there is a remotely reachable memory corruption issue in the NBNS packet handling path. When NetBIOS is enabled by calling NBNS.begin..., the device listens on UDP...

8.8CVSS0.00307EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/24 7:19 p.m.7 views

CVE-2026-41429

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, there is a remotely reachable memory corruption issue in the NBNS packet handling path. When NetBIOS is enabled by calling NBNS.begin..., the device listens on UDP...

8.8CVSS5.6AI score0.00307EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/04/24 7:19 p.m.43 views

CVE-2026-41429

CVE-2026-41429 affects the arduino-esp32 core (ESP32/ESP32-S2/ESP32-S3/ESP32-C3/ESP32-C6/ESP32-H2). The issue is a memory corruption in NBNS packet handling when NetBIOS is enabled via NBNS.begin(...); the code path listens on UDP port 137 and processes untrusted NBNS requests. The request parser...

8.8CVSS5.6AI score0.00307EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/04/24 7:19 p.m.36 views

CVE-2026-41429 Improper validation of NBNS name_len in arduino-esp32 NetBIOS leads to memory corruption

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, there is a remotely reachable memory corruption issue in the NBNS packet handling path. When NetBIOS is enabled by calling NBNS.begin..., the device listens on UDP...

8.8CVSS0.00307EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.11 views

arduino-esp32 安全漏洞

Arduino-ESP32 is an open-source project by Espressif, designed for use with the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6, and ESP32-H2 boards. Versions of Arduino-ESP32 prior to 3.3.8 contained a security vulnerability. This vulnerability stemmed from a remote exploitable memory corruption...

8.8CVSS5.8AI score0.00307EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.12 views

PT-2026-35072

Name of the Vulnerable Software and Affected Versions arduino-esp32 versions prior to 3.3.8 Description A remotely reachable memory corruption issue exists in the NBNS packet handling path. When NetBIOS is enabled via the NBNS.begin function, the device listens on UDP port 137 and processes...

8.8CVSS5.5AI score0.00307EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.12 views

PT-2026-23434

I have been running an ESP32-S3 BLE mesh network at home for about 3 months now. Six nodes tracking temperature, humidity and air quality. Using esp-idf 5.2 with deep sleep at 30 second intervals. Getting around 7.5 months battery life per node which is better than I expected. The key was...

5.9AI score
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2026/02/14 12:0 a.m.7 views

Security update for micropython (low)

openSUSE Security Update: Security update for micropython Announcement ID: openSUSE-SU-2026:0050-1 Rating: low References: 1257803 Cross-References: CVE-2025-59438 CVE-2026-1998 CVSS scores: CVE-2025-59438 SUSE: 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N Affected Products...

5.7CVSS5.5AI score0.0024EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/02/13 12:0 a.m.7 views

openSUSE 16 Security Update : micropython (openSUSE-SU-2026:20199-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20199-1 advisory. Changes in micropython: - CVE-2026-1998: Fixed segmentation fault in mpmaplookup via mpimportall bsc1257803. - Version 1.26.1 esp32: update esptinyusb...

5.5CVSS4.8AI score0.00203EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/12 10:51 a.m.5 views

CVE-2025-15575

The firmware update functionality does not verify the authenticity of the supplied firmware update files. This allows attackers to flash malicious firmware update files on the device. Initial analysis of the firmware update functionality does not show any cryptographic checks e.g. digital signatu...

5.3CVSS5.5AI score0.00123EPSS
Exploits0References2Affected Software5
OSV
OSV
added 2026/01/21 1:2 a.m.5 views

GHSA-4H3H-63V6-88QX ESPHome vulnerable to denial-of-service via out-of-bounds check bypass in the API component

Summary An integer overflow in the API component's protobuf decoder allows denial-of-service attacks when API encryption is not used. Details The bounds check ptr + fieldlength end in components/api/proto.cpp can overflow when a malicious client sends a large fieldlength value. This affects all...

6.8CVSS5.6AI score0.00273EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/29 2:3 p.m.8 views

CVE-2025-15135

A weakness has been identified in joey-zhou xiaozhi-esp32-server-java up to 3.0.0. This impacts the function tryAuthenticateWithCookies of the file AuthenticationInterceptor.java of the component Cookie Handler. Executing manipulation can lead to improper authentication. The attack can be launche...

6.5CVSS6.3AI score0.00289EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/28 12:30 p.m.5 views

EUVD-2025-205508

A weakness has been identified in joey-zhou xiaozhi-esp32-server-java up to 3.0.0. This impacts the function tryAuthenticateWithCookies of the file AuthenticationInterceptor.java of the component Cookie Handler. Executing manipulation can lead to improper authentication. The attack can be launche...

6.5CVSS6.2AI score0.00289EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/12/28 12:0 a.m.7 views

Xiaozhi ESP32 Server Java 授权问题漏洞

Xiaozhi ESP32 Server Java is a Java enterprise management platform for joey individual developers. An authorization issue vulnerability exists in Xiaozhi ESP32 Server Java 3.0.0 and earlier versions, which stems from a misbehavior of the function tryAuthenticateWithCookies in the file...

6.5CVSS6.3AI score0.00289EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/12/26 11:57 p.m.24 views

CVE-2025-68474 ESF-IDF Has Out-of-Bounds Write in ESP32 Bluetooth AVRCP Vendor Command Handling

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.1, 5.4.3, 5.3.4, 5.2.6, 5.1.6, and earlier, in the avrcvendormsg function of the ESP-IDF BlueDroid AVRCP stack, the allocated buffer size was validated using AVRCMINCMDLEN 20 bytes. However, the actual fixed...

6.1CVSS0.003EPSS
Exploits0References7
Rows per page
Query Builder