CVE-2020-13595

Name of the Vulnerable Software and Affected Versions Espressif ESP-IDF versions 4.0 through 4.2

Description The issue concerns the Bluetooth Low Energy (BLE) controller implementation, which returns an incorrect number of completed BLE packets and triggers a reachable assertion on the host stack when a packet with a Message Integrity Code (MIC) failure is received. An attacker within radio range can silently trigger this assertion, disabling the target's BLE stack, by sending a crafted sequence of BLE packets.

Recommendations For Espressif ESP-IDF versions 4.0 through 4.2, consider disabling the BLE functionality until a patch is available to prevent exploitation. Restrict access to the BLE stack to minimize the risk of assertion triggering. Avoid using the BLE controller implementation in sensitive applications until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.