Vulnerabilities > Espressif > ESP IDF > 4.2.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-06-25 | CVE-2022-24893 | Out-of-bounds Write vulnerability in Espressif Esp-Idf ESP-IDF is the official development framework for Espressif SoCs. | 8.3 |
2021-09-07 | CVE-2021-28135 | Unspecified vulnerability in Espressif Esp-Idf The Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service (crash) in ESP32 by flooding the target device with LMP Feature Response data. low complexity espressif | 3.3 |