Lucene search
K

209 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-5842

Malware in sbrugna...

6.5CVSS6.5AI score0.0087EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-17140

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00314EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-17128

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00336EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-25308

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00208EPSS
Exploits2References8
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-19059

Malicious code in bioql PyPI...

9.2CVSS6.5AI score0.00741EPSS
Exploits0References7
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-17121

Malicious code in bioql PyPI...

5.1CVSS6.6AI score0.00319EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-26385

Malicious code in bioql PyPI...

8.1CVSS6.3AI score0.01514EPSS
Exploits1References3
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-54052

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00594EPSS
Exploits1References3
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-31192

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.01127EPSS
Exploits1References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-17126

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00319EPSS
Exploits0References2
osv
osv
added 2025/09/02 4:46 p.m.3 views

GHSA-MXH2-CCGJ-8635 ESP-IDF web_server basic auth bypass using empty or incomplete Authorization header

Summary On the ESP-IDF platform, ESPHome's webserver authentication check can pass incorrectly when the client-supplied base64-encoded Authorization value is empty or is a substring of the correct value e.g., correct username with partial password. This allows access to webserver functionality...

8.1CVSS6.3AI score0.01514EPSS
Exploits1References4
osv
osv
added 2025/08/21 3:5 p.m.6 views

CVE-2025-55297 ESF-IDF BluFi Example Memory Overflow Vulnerability

ESF-IDF is the Espressif Internet of Things IOT Development Framework. The BluFi example bundled in ESP-IDF was vulnerable to memory overflows in two areas: Wi-Fi credential handling and Diffie–Hellman key exchange. This vulnerability is fixed in 5.4.1, 5.3.3, 5.1.6, and 5.0.9...

7.7CVSS6.8AI score0.00321EPSS
Exploits0References15
redhatcve
redhatcve
added 2025/06/26 8:18 p.m.10 views

CVE-2025-52471

ESF-IDF is the Espressif Internet of Things IOT Development Framework. An integer underflow vulnerability has been identified in the ESP-NOW protocol implementation within the ESP Wi-Fi component of versions 5.4.1, 5.3.3, 5.2.5, and 5.1.6 of the ESP-IDF framework. This issue stems from insufficie...

9.2CVSS8.2AI score0.00741EPSS
Exploits0References1
nvd
nvd
added 2025/06/24 8:15 p.m.7 views

CVE-2025-52471

ESF-IDF is the Espressif Internet of Things IOT Development Framework. An integer underflow vulnerability has been identified in the ESP-NOW protocol implementation within the ESP Wi-Fi component of versions 5.4.1, 5.3.3, 5.2.5, and 5.1.6 of the ESP-IDF framework. This issue stems from insufficie...

9.8CVSS0.00741EPSS
Exploits0References7
cvelist
cvelist
added 2025/06/24 7:53 p.m.9 views

CVE-2025-52471 ESP-NOW Integer Underflow Vulnerability Advisory

ESF-IDF is the Espressif Internet of Things IOT Development Framework. An integer underflow vulnerability has been identified in the ESP-NOW protocol implementation within the ESP Wi-Fi component of versions 5.4.1, 5.3.3, 5.2.5, and 5.1.6 of the ESP-IDF framework. This issue stems from insufficie...

9.2CVSS0.00741EPSS
Exploits0References7
osv
osv
added 2025/06/24 7:53 p.m.6 views

CVE-2025-52471 ESP-NOW Integer Underflow Vulnerability Advisory

ESF-IDF is the Espressif Internet of Things IOT Development Framework. An integer underflow vulnerability has been identified in the ESP-NOW protocol implementation within the ESP Wi-Fi component of versions 5.4.1, 5.3.3, 5.2.5, and 5.1.6 of the ESP-IDF framework. This issue stems from insufficie...

9.2CVSS8AI score0.00741EPSS
Exploits0References9
cve
cve
added 2025/06/24 7:53 p.m.35 views

CVE-2025-52471

The CVE-2025-52471 affects ESP-IDF’s ESP-NOW protocol within the ESP-Wi‑Fi component for ESP-IDF versions 5.4.1, 5.3.3, 5.2.5, and 5.1.6. Root cause: insufficient validation of the data_len parameter in the RX callback/data length handling leads to integer underflow, potentially causing out-of-bo...

9.8CVSS8.1AI score0.00741EPSS
Exploits0References7Affected Software1
vulnrichment
vulnrichment
added 2025/06/24 7:53 p.m.4 views

CVE-2025-52471 ESP-NOW Integer Underflow Vulnerability Advisory

ESF-IDF is the Espressif Internet of Things IOT Development Framework. An integer underflow vulnerability has been identified in the ESP-NOW protocol implementation within the ESP Wi-Fi component of versions 5.4.1, 5.3.3, 5.2.5, and 5.1.6 of the ESP-IDF framework. This issue stems from insufficie...

9.2CVSS8.1AI score0.00741EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2025/06/24 12:0 a.m.8 views

PT-2025-26778

Name of the Vulnerable Software and Affected Versions: ESF-IDF versions 5.1.6, 5.2.5, 5.3.3, and 5.4.1 Description: An integer underflow vulnerability has been identified in the ESP-NOW protocol implementation within the ESP Wi-Fi component of the ESP-IDF framework. This issue stems from...

9.8CVSS6.4AI score0.00741EPSS
Exploits0References14
redhatcve
redhatcve
added 2025/06/08 11:58 a.m.9 views

CVE-2025-41360

Uncontrolled resource consumption vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. The device is vulnerable to a packet flooding denial of service attack...

8.7CVSS7.1AI score0.00336EPSS
Exploits0References1
Rows per page
Query Builder