Espressif: >> Esp-Idf >> 5.1 Security Vulnerabilities
ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. The BluFi example bundled in ESP-IDF was vulnerable to memory overflows in two areas: Wi-Fi credential handling and Diffie–Hellman key exchange. This vulnerability is fixed in 5.4.1, 5.3.3, 5.1.6, and 5.0.9.
CVSS Score
8.8
EPSS Score
0.0
Published
2025-08-21
Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to obtain sensitive information via the externalId component.
CVSS Score
8.1
EPSS Score
0.128
Published
2024-10-17
Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the Bluetooth stack component.
CVSS Score
6.5
EPSS Score
0.013
Published
2024-05-14