Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
espressif esp8266 nonos sdk vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-12588
The client 802.11 mac implementation in Espressif ESP8266_NONOS_SDK 2.2.0 up to and including 3.1.0 does not validate correctly the RSN AuthKey suite list count in beacon frames, probe responses, and association responses, which allows attackers in radio range to cause a denial o...
Espressif Esp8266 Nonos Sdk
Espressif Arduino Esp8266
6 Github repositories
6.8
CVSSv3
CVE-2020-12638
An encryption-bypass issue exists on Espressif ESP-IDF devices up to and including 4.2, ESP8266_NONOS_SDK devices up to and including 3.0.3, and ESP8266_RTOS_SDK devices up to and including 3.3. Broadcasting forged beacon frames forces a device to change its authentication mode t...
Espressif Esp-idf
Espressif Esp8266 Nonos Sdk
Espressif Esp8266 Rtos Sdk
8.1
CVSSv3
CVE-2019-12587
The EAP peer implementation in Espressif ESP-IDF 2.0.0 up to and including 4.0.0 and ESP8266_NONOS_SDK 2.2.0 up to and including 3.1.0 allows the installation of a zero Pairwise Master Key (PMK) after the completion of any EAP authentication method, which allows attackers in radi...
Espressif Esp8266 Nonos Sdk
Espressif Esp-idf
6 Github repositories
6.5
CVSSv3
CVE-2019-12586
The EAP peer implementation in Espressif ESP-IDF 2.0.0 up to and including 4.0.0 and ESP8266_NONOS_SDK 2.2.0 up to and including 3.1.0 processes EAP Success messages before any EAP method completion or failure, which allows attackers in radio range to cause a denial of service (c...
Espressif Arduino-esp32 1.0.3
Espressif Esp-idf
Espressif Arduino-esp32
Espressif Esp8266 Nonos Sdk
6 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started