ESP-NOW Replay Attacks Vulnerability

ESP-NOW Component provides a connectionless Wi-Fi communication protocol. An replay attacks vulnerability was discovered in the implementation of the ESP-NOW because the caches is not differentiated by message types, it is a single, shared resource for all kinds of messages, whether they are broadcast or unicast, and regardless of whether they are ciphertext or plaintext. This can result an attacker to clear the cache of its legitimate entries, there by creating an opportunity to re-inject previously captured packets. This vulnerability is fixed in 2.5.2.

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

在可信数据中接受外来的不可信数据

ESP-NOW 安全漏洞

ESP-NOW是Espressif Systems开源的一个 Wi-Fi 通信协议。 ESP-NOW 2.5.1及之前版本存在安全漏洞，该漏洞源于缓存未对消息类型进行区分，导致重放攻击的风险。这可能会使攻击者清除缓存中的合法条目，从而创造重新注入先前捕获的数据包的机会。

N/A

N/A