Out-of-Bounds Write Vulnerability in Espressif IoT Development Framework
CVE-2026-55687

7.5HIGH

Key Information:

Vendor

Espressif

Status
Vendor
CVE Published:
10 July 2026

What is CVE-2026-55687?

The Espressif Internet of Things Development Framework is vulnerable to an out-of-bounds write when processing JPEG data. This occurs in the jpeg_parse_dqt_marker() function due to the use of an attacker-controlled DQT marker Tq nibble as an index into the qt_tbl array without proper validation. Consequently, a malformed JPEG input can lead to stack memory corruption, resulting in a denial of service. This vulnerability affects multiple versions, and a fix has been released in version 6.0.2, with forthcoming updates addressing it in earlier versions.

Affected Version(s)

esp-idf >= 6.0.0, < 6.0.2 < 6.0.0, 6.0.2

esp-idf >= 5.5.0, <= 5.5.4 <= 5.5.0, 5.5.4

esp-idf >= 5.4.0, <= 5.4.4 <= 5.4.0, 5.4.4

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.