esptool@5.1.0 vulnerabilities

A serial utility for flashing, provisioning, and interacting with Espressif SoCs.

latest version

5.2.dev1

first published

9 years ago

latest version published

11 days ago

licenses detected

GPL-2.0
[0,)

View esptool package health on Snyk Advisor (opens in a new tab)

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the esptool package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
M Inadequate Encryption Strength esptool is an A serial utility to communicate & flash code to Espressif chips. Affected versions of this package are vulnerable to Inadequate Encryption Strength in the `AES ECB` used for initialization. An attacker can view sensitive information by exploiting this weakness. How to fix Inadequate Encryption Strength? There is no fixed version for `esptool`.	[0,)

Go back to all versions of this package