CVE-2026-41429

HIGH EPSS 22.4%

Published Apr 24, 20262mo ago · Modified Jun 17, 20261w ago

8.8 CVSS 3.1

High

Published Apr 24, 2026 2mo ago

Last Modified Jun 17, 2026 1w ago

Description

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, there is a remotely reachable memory corruption issue in the NBNS packet handling path. When NetBIOS is enabled by calling NBNS.begin(...), the device listens on UDP port 137 and processes untrusted NBNS requests from the local network. The request parser trusts the attacker-controlled name_len field without enforcing a bound consistent with the fixed-size destination buffers used later in the flow. This vulnerability is fixed in 3.3.8.

CVSS Details

Base Score

8.8

Exploitability

2.8

Impact

5.9

Vector string

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector Adjacent

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Unchanged

Confidentiality High

Integrity High

Availability High

Threat Intelligence

EPSS Exploit Probability

22.4% percentile

Exploit & Patch Status

Public Exploit Known

No Patch Available

Weaknesses 1

CWE-121

Affected Products 7

Vendor	Product	Version	Range
espressif	arduino-esp32	*	<3.3.8
espressif	esp32	*	any
espressif	esp32-c3	*	any
espressif	esp32-c6	*	any
espressif	esp32-h2	*	any
espressif	esp32-s2	*	any
espressif	esp32-s3	*	any

References 1

github.com https://github.com/espressif/arduino-esp32/security/advisories/GHSA-92j9-c75g-2c5f

ExploitVendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.