Matheus-Garbelini/esp32_esp8266_attacks

Matheus-Garbelini/esp32_esp8266_attacks

Releases0

Stars817

Proof of Concept of ESP32/8266 Wi-Fi vulnerabilties (CVE-2019-12586, CVE-2019-12587, CVE-2019-12588)

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-12586 ↗	Sep 4, 2019Wednesday, 4 September 2019, 20:15	—	3.3 LOW
The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 and ESP8266_NONOS_SDK 2.2.0 through 3.1.0 processes EAP Success messages before any EAP method completion or failure, which allows attackers in radio range to cause a denial of service (crash) via a crafted message.
CVE-2019-12587 ↗	Sep 4, 2019Wednesday, 4 September 2019, 12:15	—	4.8 MEDIUM
The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 and ESP8266_NONOS_SDK 2.2.0 through 3.1.0 allows the installation of a zero Pairwise Master Key (PMK) after the completion of any EAP authentication method, which allows attackers in radio range to replay, decrypt, or spoof frames via a rogue access point.
CVE-2019-12588 ↗	Sep 4, 2019Wednesday, 4 September 2019, 12:15	6.5 MEDIUM	3.3 LOW
The client 802.11 mac implementation in Espressif ESP8266_NONOS_SDK 2.2.0 through 3.1.0 does not validate correctly the RSN AuthKey suite list count in beacon frames, probe responses, and association responses, which allows attackers in radio range to cause a denial of service (crash) via a crafted message.