CVE-2018-18558

Name of the Vulnerable Software and Affected Versions Espressif ESP-IDF versions 2.x through 3.0.5 Espressif ESP-IDF versions 3.1.x through 3.1.0

Description The issue is related to insufficient validation of input data in the 2nd stage bootloader, allowing a physically proximate attacker to bypass secure boot checks and execute arbitrary code. This can be achieved by crafting an application binary that overwrites a bootloader code segment in process segment in components/bootloader support/src/esp image format.c. The attack is effective when the flash encryption feature is not enabled, or if the attacker finds a different vulnerability that allows them to write this binary to flash memory.

Recommendations For Espressif ESP-IDF versions 2.x through 3.0.5, update to version 3.0.6 or later. For Espressif ESP-IDF versions 3.1.x through 3.1.0, update to version 3.1.1 or later.