CVE-2025-68473 | Espressif ESP-IDF up to 5.1.6/5.2.6/5.3.4/5.4.3/5.5.1 Service Discovery Protocol bta_dm_sdp_result uuid_list out-of-bounds write (GHSA-hmjj-rjvv-w8pq)

A vulnerability was found in Espressif ESP-IDF up to 5.1.6/5.2.6/5.3.4/5.4.3/5.5.1. It has been rated as critical. This issue affects the function bta_dm_sdp_result of the component Service Discovery Protocol. This manipulation of the argument uuid_list causes out-of-bounds write.

This vulnerability is registered as CVE-2025-68473. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More