CVE-2026-41429
Improper validation of NBNS name_len in arduino-esp32 NetBIOS leads to memory corruption
CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th
arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, there is a remotely reachable memory corruption issue in the NBNS packet handling path. When NetBIOS is enabled by calling NBNS.begin(...), the device listens on UDP port 137 and processes untrusted NBNS requests from the local network. The request parser trusts the attacker-controlled name_len field without enforcing a bound consistent with the fixed-size destination buffers used later in the flow. This vulnerability is fixed in 3.3.8.
| CWE | CWE-121 |
| Vendor | espressif |
| Product | arduino-esp32 |
| Published | Apr 24, 2026 |
Stay Ahead of the Next One
Get instant alerts for espressif arduino-esp32
Be the first to know when new high vulnerabilities affecting espressif arduino-esp32 are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected Versions
espressif / arduino-esp32
< 3.3.8