Vulnerabilities > Espressif > Esp8266 Nonos SDK > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-04 | CVE-2019-12586 | Unspecified vulnerability in Espressif Arduino-Esp32, Esp-Idf and Esp8266 Nonos SDK The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 and ESP8266_NONOS_SDK 2.2.0 through 3.1.0 processes EAP Success messages before any EAP method completion or failure, which allows attackers in radio range to cause a denial of service (crash) via a crafted message. low complexity espressif | 3.3 |
| 2019-09-04 | CVE-2019-12588 | Improper Input Validation vulnerability in Espressif Arduino Esp8266 and Esp8266 Nonos SDK The client 802.11 mac implementation in Espressif ESP8266_NONOS_SDK 2.2.0 through 3.1.0 does not validate correctly the RSN AuthKey suite list count in beacon frames, probe responses, and association responses, which allows attackers in radio range to cause a denial of service (crash) via a crafted message. | 3.3 |