Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to obtain sensitive information via the externalId component.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 18 Oct 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Espressif
Espressif esp-idf
Weaknesses CWE-120
CPEs cpe:2.3:a:espressif:esp-idf:5.1:*:*:*:*:*:*:*
Vendors & Products Espressif
Espressif esp-idf
Metrics cvssV3_1

{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 17 Oct 2024 21:30:00 +0000

Type Values Removed Values Added
Description Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to obtain sensitive information via the externalId component.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-10-18T19:10:25.659Z

Reserved: 2024-04-23T00:00:00

Link: CVE-2024-33453

cve-icon Vulnrichment

Updated: 2024-10-18T19:10:20.000Z

cve-icon NVD

Status : Analyzed

Published: 2024-10-17T22:15:03.040

Modified: 2025-09-22T13:40:51.720

Link: CVE-2024-33453

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.