CVE-2026-45328

Source
https://cve.org/CVERecord?id=CVE-2026-45328
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45328.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-45328
Aliases
  • GHSA-mmgp-73p4-92xp
Published
2026-06-10T00:33:43.997Z
Modified
2026-07-08T08:09:38.144206058Z
Severity
  • 9.3 (Critical) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS Calculator
Summary
ESF-IDF: Out-of-Bounds Write in ESP-TEE Secure Service Wrappers
Details

ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.5.4 and 6.0, the esptee component exposes secure-service wrappers in espsecureservices.c and espsecureservicesiram.c that bridge calls from the user application (i.e. the REE) to TEE-protected hardware peripherals (AES, SHA, ECC, HMAC, SPI, MMU, WDT) and to the security feature like attestation, OTA updates, secure storage. This issue has been patched in versions 5.5.5 and 6.0.1.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45328.json",
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-20",
        "CWE-787"
    ]
}
References

Affected packages

Git / github.com/espressif/esp-idf

Affected ranges

Type
GIT
Repo
https://github.com/espressif/esp-idf
Events
Database specific
{
    "source": [
        "CPE_STRING",
        "REFERENCES"
    ],
    "cpe": [
        "cpe:2.3:a:espressif:esp-idf:5.5.4:*:*:*:*:*:*:*",
        "cpe:2.3:a:espressif:esp-idf:6.0:*:*:*:*:*:*:*"
    ],
    "extracted_events": [
        {
            "introduced": "5.5.4"
        },
        {
            "last_affected": "5.5.4"
        },
        {
            "introduced": "6.0"
        },
        {
            "last_affected": "6.0"
        }
    ]
}

Affected versions

5.*
5.5.4
6.*
6.0
= 5.*
= 5.5.4
= 6.*
= 6.0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45328.json"