These security gaps allow you to change the MAC address, get unauthorized access to the device’s memory, and make attacks through Bluetooth.
The study was carried out by Tarlogic security experts who presented their results at the Rootedcon Conference in Madrid.
The attackers identified 29 undocumented teams that provided low -level control over the ESP32 Bluetooth function. The problem is recorded under CV-2025-27840.
Although the process requires physical access to the device, in some scenarios, attacks through malware or infected product software is possible from a remote.
Official comments have not yet been given to Espressif.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
