Description

ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In 5.5.1, 5.4.3, 5.3.4, 5.2.6, 5.1.6, and earlier, when AVRCP is enabled on ESP32, receiving a malformed VENDOR DEPENDENT command from a peer device can cause the Bluetooth stack to access memory before validating the command buffer length. This may lead to an out-of-bounds read, potentially exposing unintended memory content or causing unexpected behavior.

INFO

Published Date :

2025-12-02T18:09:03.069Z

Last Modified :

2025-12-02T18:46:18.126Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-66409 vulnerability.

Vendors Products
Espressif
  • Esp-idf
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-66409.

URL Resource
https://github.com/espressif/esp-idf/commit/075ed218cadb8088155521cd8a795d8a626519fb cve-icon cve-icon
https://github.com/espressif/esp-idf/commit/2f788e59ee361eee230879ae2ec9cf5c893fe372 cve-icon cve-icon
https://github.com/espressif/esp-idf/commit/798029129a71c802cff0e75eb59f902bca8f1946 cve-icon cve-icon
https://github.com/espressif/esp-idf/commit/999710fccf95ae128fe51b5679d6b7c75c50d902 cve-icon cve-icon
https://github.com/espressif/esp-idf/commit/d5db5f60fc1dcfdd8cd3ee898fdefaa272988ace cve-icon cve-icon
https://github.com/espressif/esp-idf/commit/daeeba230327176b9627b1caa94acdc54065c4b7 cve-icon cve-icon
https://github.com/espressif/esp-idf/security/advisories/GHSA-qhf9-vr2h-jh96 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact