CVE-2026-45541

HIGH EPSS 35.1%
Published Jun 10, 20262w ago · Modified Jun 17, 20261w ago
7.5 CVSS 3.1
High
Find Similar
Published Jun 10, 2026 2w ago
Last Modified Jun 17, 2026 1w ago

Description

ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.4, and 6.0, a NULL-pointer dereference exists in the WebSocket subprotocol-negotiation path of the esp_http_server component. While parsing the client-supplied Sec-WebSocket-Protocol request header during the WebSocket handshake, the tokenisation result is dereferenced without a NULL check, so a malformed header value can crash the server before any application-level authentication runs. This issue has been patched in versions 5.2.7, 5.3.6, 5.4.5, 5.5.5, and 6.0.1.

CVSS Details

Base Score
7.5
Exploitability
3.9
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
35.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 5

VendorProductVersionRange
espressifesp-idf5.2.6any
espressifesp-idf5.3.5any
espressifesp-idf5.4.4any
espressifesp-idf5.5.4any
espressifesp-idf6.0any

References 7

  • github.com https://github.com/espressif/esp-idf/commit/00a2f7fbbbd8fe6d04729022e1d5c9a49435bfe8
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/0dc4ee7537f3b12350f5966cecacd59bba840ec6
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/37508ab91124ef426a7396d30f79eba1162700c7
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/9fc0ca13b3b85b98d32b98cd9dc8ff9d82642b7b
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/dc46dc51359749e50617eb70d6f9ae298adc4fff
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/f88a47e4f37fb11ae4b0908cd5c80059d83198c6
    Patch
  • github.com https://github.com/espressif/esp-idf/security/advisories/GHSA-3j8v-xgrq-5vg8
    MitigationPatchVendor Advisory

Remediation

  • github.com https://github.com/espressif/esp-idf/commit/00a2f7fbbbd8fe6d04729022e1d5c9a49435bfe8
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/0dc4ee7537f3b12350f5966cecacd59bba840ec6
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/37508ab91124ef426a7396d30f79eba1162700c7
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/9fc0ca13b3b85b98d32b98cd9dc8ff9d82642b7b
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/dc46dc51359749e50617eb70d6f9ae298adc4fff
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/f88a47e4f37fb11ae4b0908cd5c80059d83198c6
    Patch
  • github.com https://github.com/espressif/esp-idf/security/advisories/GHSA-3j8v-xgrq-5vg8
    MitigationPatchVendor Advisory