Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
6.8
CVSSv3

CVE-2025-27840

CVSSv4: NA | CVSSv3: 6.8 | CVSSv2: NA | VMScore: 780 | EPSS: 0.00066 | KEV: Not Included
Published: 08/03/2025 Updated: 10/03/2025

Vulnerability Summary

Undocumented Bluetooth HCI Memory Write Command Vulnerability in Espressif ESP32

Espressif ESP32 chips allow 29 hidden HCI commands, such as 0xFC02 (Write memory).

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

espressif esp32

Github Repositories

https://github.com/trh4ckn0n/trh4ckn0n

Config files for my GitHub profile.

😈 Bienvenue sur mon GitHub ! πŸ‘Ύ Passionné par la cybersécurité et le développement 🌟 Toujours en train d'expérimenter de nouveaux outils πŸš€ Voici un aperçu de mes projets GitHub !

https://github.com/ladyg00se/CVE-2025-27840-WIP

A Work-In-Progress for CVE-2025-27840

CVE-2025-27840-WIP A Work-In-Progress for CVE-2025-27840 CVE-2025-27840 Overview CVE-2025-27840 is a medium-severity vulnerability (CVSS 68) affecting Espressif ESP32 Bluetooth chips, which are integrated into over 1 billion IoT devices globally The flaw involves 29 undocumented Host Controller Interface (HCI) commands that could enable unauthorized memory access and device c

https://github.com/demining/Bluetooth-Attacks-CVE-2025-27840

Bitcoin Cryptanalysis: CVE-2025-27840 Vulnerability in ESP32 Microcontrollers Puts Billions of IoT Devices at Risk via Wi-Fi & Bluetooth

This paper discusses how an attacker can introduce a hidden list of vulnerabilities through module updates, which can lead to compromise of ESP32 devices and gaining unauthorized access to private keys, affecting billions of devices using this microcontroller One of the key issues is the CVE-2025-27840 vulnerability discovered in the ESP32 architecture To en

https://github.com/Alirezarv700/CryptoDeepTools

CryptoDeepTools Crypto Deep Tools a set of scripts for detailed cryptanalysis of the Blockchain network in cryptocurrency Bitcoin 01BlockchainGoogleDrive Parsing Blockchain in Google Drive Tutorial: youtube/ECAPypsmMQs Tutorial: cryptodeeptechru/blockchain-google-drive 02BreakECDSAcryptography Analyze the data from the file "RawTXjson" S

https://github.com/trh4ckn0n/work

Generate README.md via python and workflows

😈 Bienvenue sur mon GitHub ! πŸ‘Ύ Passionné par la cybersécurité et le développement 🌟 Toujours en train d'expérimenter de nouveaux outils πŸš€ Voici un aperçu de mes projets GitHub !

Recent Articles

Undocumented commands found in Bluetooth chip used by a billion devices
BleepingComputer β€’ Bill Toulas β€’ 08 Mar 2025

Undocumented commands found in Bluetooth chip used by a billion devices By Bill Toulas March 8, 2025 11:12 AM 7 Update 3/9/25: After receiving concerns about the use of the term 'backdoor' to refer to these undocumented commands, we have updated our title and story. Our original story can be found here. The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains undocumented commands that could be leveraged for attacks. The undo...

Read more...

References

CWE-912https://nvd.nist.govhttps://www.bleepingcomputer.com/news/security/undocumented-commands-found-in-bluetooth-chip-used-by-a-billion-devices/https://github.com/trh4ckn0n/trh4ckn0nhttps://www.first.org/epsshttps://cheriot.org/auditing/backdoor/2025/03/09/no-esp32-style-backdoor.htmlhttps://darkmentor.com/blog/esp32_non-backdoor/https://flyingpenguin.com/?p=67838https://github.com/TarlogicSecurity/Talks/blob/main/2025_RootedCon_BluetoothTools.pdfhttps://github.com/em0gi/CVE-2025-27840https://github.com/esphome/esphome/discussions/8382https://github.com/orgs/espruino/discussions/7699https://news.ycombinator.com/item?id=43301369https://news.ycombinator.com/item?id=43308740https://reg.rootedcon.com/cfp/schedule/talk/5https://www.bleepingcomputer.com/news/security/undocumented-backdoor-found-in-bluetooth-chip-used-by-a-billion-devices/https://www.bleepingcomputer.com/news/security/undocumented-commands-found-in-bluetooth-chip-used-by-a-billion-devices/https://www.tarlogic.com/news/backdoor-esp32-chip-infect-ot-devices/https://x.com/pascal_gujer/status/1898442439704158276
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-39551hard-codedtype confusionmarkus drubbaCVE-2025-24054broken links removerCVE-2025-39567anthologizeCVE-2025-31201CVE-2025-29454file uploadCVE-2025-39558momen2009
Home
/
Search Results
/
CVE-2025-27840
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook