Vendor of Product

Espressif Systems

Affected Verisons

2.x

3.0.x -3.0.9

3.1.x - 3.1.7

3.2.x - 3.2.3

3.3.x - 3.3.2

4.0.x - 4.0.1

CVE ID

CVE-2020-16146

Description

Espressif ESP-IDF 2.x, 3.0.x through 3.0.9, 3.1.x through 3.1.7, 3.2.x through 3.2.3, 3.3.x through 3.3.2, and 4.0.x through 4.0.1 has a Buffer Overflow in BluFi provisioning in btc_blufi_recv_handler function in blufi_prf.c. An attacker can send a crafted BluFi protocol Write Attribute command to characteristic 0xFF01. With manipulated packet fields, there is a buffer overflow.

Vulnerability Type

CWE-120 Classic Buffer Overflow

Affected Component

BluFi provisioning, btc_blufi_recv_handler function in blufi_prf.c.

Attack Type

Remote

Impact

Denial of Service

Reporter

Lewei Qu

References

https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=cve-2020-16146

https://github.com/espressif/esp-idf

https://www.espressif.com/en/products/socs

espressif/esp-idf#5048

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2020-16146.md

CVE-2020-16146.md

Vendor of Product

Affected Verisons

CVE ID

Description

Vulnerability Type

Affected Component

Attack Type

Impact

Reporter

References

Files

CVE-2020-16146.md

Latest commit

History

CVE-2020-16146.md

File metadata and controls

Vendor of Product

Affected Verisons

CVE ID

Description

Vulnerability Type

Affected Component

Attack Type

Impact

Reporter

References