CVE-2026-41429

Published: Apr 24, 2026Modified: May 5, 2026

8.8

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: security-advisories@github.com (Secondary)

Description

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, there is a remotely reachable memory corruption issue in the NBNS packet handling path. When NetBIOS is enabled by calling NBNS.begin(...), the device listens on UDP port 137 and processes untrusted NBNS requests from the local network. The request parser trusts the attacker-controlled name_len field without enforcing a bound consistent with the fixed-size destination buffers used later in the flow. This vulnerability is fixed in 3.3.8.

Affected (1)

Products: Espressif: Arduino Esp32

Espressif

1 product

Arduino Esp32

Configuration A

1 vulnerable · 6 platform

Vulnerable Software	Affected Versions
Espressif Arduino Esp32	Before 3.3.8

Running on/with	Platform Versions
Espressif Esp32	All versions
Espressif Esp32 C3	All versions
Espressif Esp32 C6	All versions
Espressif Esp32 H2	All versions
Espressif Esp32 S2	All versions
Espressif Esp32 S3	All versions

Related CWEs

CWE-121

Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

References (2)

https://github.com/espressif/arduino-esp32/security/advisories/GHSA-92j9-c75g-2c5f

Source: security-advisories@github.com

ExploitVendor Advisory

https://github.com/espressif/arduino-esp32/security/advisories/GHSA-92j9-c75g-2c5f

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

ExploitVendor Advisory

Timeline

No history available yet.