CVE-2020-16146 – Espressif ESP-IDF 2.x, 3.0.x through 3.0.9, 3.1.x through 3.1.7, 3.2.x through 3.2.3, 3.3. …

12 January 2021

Vuln ID: CVE-2020-16146

Published: 2021-01-12 03:15:12Z

Description: Espressif ESP-IDF 2.x, 3.0.x through 3.0.9, 3.1.x through 3.1.7, 3.2.x through 3.2.3, 3.3.x through 3.3.2, and 4.0.x through 4.0.1 has a Buffer Overflow in BluFi provisioning in btc_blufi_recv_handler function in blufi_prf.c. An attacker can send a crafted BluFi protocol Write Attribute command to characteristic 0xFF01. With manipulated packet fields, there is a buffer overflow.

Source: NVD.NIST.GOV

Date:

12 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Rewards Up to $10 Million for Information on Iranian Hackers24 April 2024
‘Absolute joke’: customers’ personal data exposed amid Pandemonium Rocks festival refund stoush24 April 2024
CoralRaider Malware Campaign Exploits CDN Cache to Spread Info-Stealers24 April 2024
GenAI can enhance security awareness training24 April 2024
AI set to play key role in future phishing attacks24 April 2024