216.73.217.64

CVE-2024-53406

· Published 13/03/2025 17:15 · Modified 13/03/2025 17:15

Labels: CVE-2024-53406 2025-03-13CVE-2024-53406[email protected]

Essential information

Published
13/03/2025 17:15
Modified
13/03/2025 17:15
Author
Creator
CISA KEV
No
CWE

Description

Espressif Esp idf v5.3.0 is vulnerable to Insecure Permissions resulting in Authentication bypass. In the reconnection phase, the device reuses the session key from a previous connection session, creating an opportunity for attackers to execute security bypass attacks.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
espresiff / esp idf cpe:2.3:a:espresiff:esp_idf:5.3.0:*:*:*:*:*:*:*

References