{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T12:27:33.557","vulnerabilities":[{"cve":{"id":"CVE-2025-68657","sourceIdentifier":"security-advisories@github.com","published":"2026-01-12T18:15:48.610","lastModified":"2026-01-22T15:47:26.980","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Espressif ESP-IDF USB Host HID (Human Interface Device) Driver allows access to HID devices. Prior to 1.1.0, calls to hid_host_device_close() can free the same usb_transfer_t twice. The USB event callback and user code share the hid_iface_t state without locking, so both can tear down a READY interface simultaneously, corrupting heap metadata inside the ESP USB host stack. This vulnerability is fixed in 1.1.0."},{"lang":"es","value":"El controlador Espressif ESP-IDF USB Host HID (dispositivo de interfaz humana) permite el acceso a dispositivos HID. Antes de la versión 1.1.0, las llamadas a hid_host_device_close() pueden liberar la misma usb_transfer_t dos veces. La devolución de llamada de eventos USB y el código de usuario comparten el estado de hid_iface_t sin bloqueo, por lo que ambos pueden desmantelar una interfaz READY simultáneamente, corrompiendo los metadatos del heap dentro de la pila de host USB de ESP. Esta vulnerabilidad se corrige en la versión 1.1.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.5,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-415"},{"lang":"en","value":"CWE-667"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:espressif:usb_host_hid_driver:*:*:*:*:*:*:*:*","versionEndExcluding":"1.1.0","matchCriteriaId":"139CC02D-BC53-4537-B250-9AD6B260F309"}]}]}],"references":[{"url":"https://components.espressif.com/components/espressif/usb_host_hid/versions/1.1.0/changelog","source":"security-advisories@github.com","tags":["Release Notes"]},{"url":"https://github.com/espressif/esp-usb/commit/cd28106e9f72ac2719682c06f94601f9f034390b","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/espressif/esp-usb/security/advisories/GHSA-gp8r-qjfr-gqfv","source":"security-advisories@github.com","tags":["Vendor Advisory","Patch"]}]}}]}