CVE-2025-52471

Name of the Vulnerable Software and Affected Versions: ESF-IDF versions 5.1.6, 5.2.5, 5.3.3, and 5.4.1

Description: An integer underflow vulnerability has been identified in the ESP-NOW protocol implementation within the ESP Wi-Fi component of the ESP-IDF framework. This issue stems from insufficient validation of user-supplied data length in the packet receive function. Under certain conditions, this may lead to out-of-bounds memory access and may allow arbitrary memory write operations. On systems without a memory protection scheme, this behavior could potentially be used to achieve remote code execution (RCE) on the target device.

Recommendations: For ESP-IDF v5.3 and earlier, a workaround can be applied by validating that the data len parameter received in the RX callback (registered via esp now register recv cb()) is a positive value before further processing. For ESP-IDF v5.4 and later, users are advised to upgrade to a patched version of ESP-IDF to take advantage of the built-in mitigation.