Out-of-Bounds Read Vulnerability in Espressif IoT Development Framework
CVE-2026-25508

6.3MEDIUM

Key Information:

Vendor

Espressif

Status
Esp-idf
Vendor
CVE Published:
4 February 2026

What is CVE-2026-25508?

An out-of-bounds read vulnerability has been identified in the BLE ATT Prepare Write handling within the Espressif Internet of Things (IoT) Development Framework. In the specified versions, this vulnerability occurs when a device is in provisioning mode and a remote BLE client sends overlapping prepare write requests. The transport utilizes a fixed-size buffer for accumulating write fragments but fails to track the total length correctly. Consequently, excessive lengths can lead to an out-of-bounds read, potentially causing memory corruption. Users are advised to update to the patched versions to mitigate this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

esp-idf = 5.5.2 = 5.5.2

esp-idf = 5.4.3 = 5.4.3

esp-idf = 5.3.4 = 5.3.4

References

https://github.com/espressif/esp-idf/security/advisories/...
x_refsource_CONFIRM
https://github.com/espressif/esp-idf/commit/0540c85140c2c...
x_refsource_MISC
https://github.com/espressif/esp-idf/commit/1ff264abf2504...
x_refsource_MISC

CVSS V3.1

Score:
6.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.