Insufficient Validation Vulnerability in Espressif ESP-IDF Products
CVE-2018-18558

6.4MEDIUM

Key Information:

Vendor: Espressif
Status: Esp-idf
Vendor: CVE Published:; 13 May 2019

What is CVE-2018-18558?

An issue in earlier versions of Espressif's ESP-IDF allows a local attacker to bypass secure boot protections due to insufficient validation of input data in the 2nd stage bootloader. This vulnerability gives an attacker the ability to execute arbitrary code by crafting a malicious application binary that overwrites a bootloader code segment, particularly when flash encryption is disabled or when the attacker exploits additional vulnerabilities to write the binary to flash memory.

References

https://github.com/espressif/esp-idf/releases

x_refsource_MISC

https://www.espressif.com/en/news/Espressif_Product_Secur...

x_refsource_MISC

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Physical

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 13, 2019
Vulnerability Reserved
Oct 22, 2018