PT-2022-16964 · Espressif · Esp-Idf

Dongxiang Ke

Published

2022-06-25

Updated

2022-07-08

CVE-2022-24893

CVSS v2.0

8.3

High

Vector

AV:A/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions ESP-IDF versions 4.1 through 4.4

Description A memory corruption issue can be triggered in the ESP-BLE-MESH component during provisioning due to the lack of a check for the SegN field of the Transaction Start PDU. This can lead to memory corruption-related attacks, potentially allowing an attacker to gain control of the entire system.

Recommendations For ESP-IDF versions 4.1 through 4.4, upgrade to a patched version, as patch commits are available on these branches.

Exploit

Fix

Memory Corruption

Access of Memory Location After End of Buffer

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-788

Related Identifiers

CVE-2022-24893

GHSA-7F7F-JJ2Q-28WM

Affected Products

Esp-Idf

PT-2022-16964 · Espressif · Esp-Idf

CVE-2022-24893

Weakness Enumeration

Related Identifiers

Affected Products

References · 6