CVE-2026-45542

HIGH EPSS 24.2%
Published Jun 10, 20262w ago · Modified Jun 17, 20261w ago
7.1 CVSS 3.1
High
Find Similar
Published Jun 10, 2026 2w ago
Last Modified Jun 17, 2026 1w ago

Description

ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.4, and 6.0, a heap buffer overflow exists in the Security Scheme 2 (SRP6a) session-setup path of the protocomm component. The first-phase handler (handle_session_command0() in components/protocomm/src/security/security2.c) trusts the length of a client-supplied protobuf field for the SRP6a username and copies it into a buffer whose size is derived from a narrower destination type. The resulting truncation-versus-copy asymmetry corrupts the heap when an oversized value is supplied. This issue has been patched in versions 5.2.7, 5.3.6, 5.4.5, 5.5.5, and 6.0.1.

CVSS Details

Base Score
7.1
Exploitability
2.8
Impact
4.2
Vector string
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Attack Vector Adjacent
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity Low
Availability High

Threat Intelligence

EPSS Exploit Probability
24.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-122

Affected Products 5

VendorProductVersionRange
espressifesp-idf5.2.6any
espressifesp-idf5.3.5any
espressifesp-idf5.4.4any
espressifesp-idf5.5.4any
espressifesp-idf6.0any

References 7

  • github.com https://github.com/espressif/esp-idf/commit/0ea58d79845ad674d0358d5de246015a68c4cb4f
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/56c3e385611e63162d0f2f8504ac4ae2ccfccef0
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/71eb2dbe6aaef830719ecac8edf409e2992b64b2
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/9b4cacf9cbc69379972de6a2247fcf5af9240961
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/a2f4554f10ba075c98cbc67464db096ba32497cf
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/f5d24a7e919bc5f447091479656b86da6762a103
    Patch
  • github.com https://github.com/espressif/esp-idf/security/advisories/GHSA-9r76-858f-v6jh
    MitigationPatchVendor Advisory

Remediation

  • github.com https://github.com/espressif/esp-idf/commit/0ea58d79845ad674d0358d5de246015a68c4cb4f
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/56c3e385611e63162d0f2f8504ac4ae2ccfccef0
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/71eb2dbe6aaef830719ecac8edf409e2992b64b2
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/9b4cacf9cbc69379972de6a2247fcf5af9240961
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/a2f4554f10ba075c98cbc67464db096ba32497cf
    Patch
  • github.com https://github.com/espressif/esp-idf/commit/f5d24a7e919bc5f447091479656b86da6762a103
    Patch
  • github.com https://github.com/espressif/esp-idf/security/advisories/GHSA-9r76-858f-v6jh
    MitigationPatchVendor Advisory