The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an undocumented “backdoor” that could be leveraged for attacks.
The undocumented commands allow spoofing of trusted devices, unauthorized data access, pivoting to other devices on the network, and potentially establishing long-term persistence..
“Exploitation of this backdoor would allow hostile actors to conduct impersonation attacks and permanently infect sensitive devices such as mobile phones, computers, smart locks or medical equipment by bypassing code audit controls.”..
The issue is now tracked under CVE-2025-27840
|
There are isolated problems with current patches, but they are well-known and documented on this site. |
-
Undocumented “backdoor” found in Bluetooth chip used by a billion devices
- This topic has 2 replies, 2 voices, and was last updated 2 months, 2 weeks ago.
AuthorViewing 1 reply threadAuthor-
Certainly makes one wonder how many other backdoors in Chinese manufactured technology have NOT been found?
1 user thanked author for this post.
-
Viewing 1 reply thread
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
KB5058405 might fail to install with recovery error 0xc0000098 in ACPI.sys
by 6 hours, 7 minutes ago
-
T-Mobile’s T-Life App has a “Screen Recording Tool” Turned on
by 8 hours, 49 minutes ago
-
Windows 11 Insider Preview Build 26100.4202 (24H2) released to Release Preview
by 3 hours, 24 minutes ago
-
Windows Update orchestration platform to update all software
by 16 hours, 8 minutes ago
-
May preview updates
by 3 hours, 32 minutes ago
-
Microsoft releases KB5061977 Windows 11 24H2, Server 2025 emergency out of band
by 5 hours, 42 minutes ago
-
Just got this pop-up page while browsing
by 8 hours, 20 minutes ago
-
KB5058379 / KB 5061768 Failures
by 5 hours, 24 minutes ago
-
Windows 10 23H2 Good to Update to ?
by 2 hours, 34 minutes ago
-
At last – installation of 24H2
by 1 day, 7 hours ago
-
MS-DEFCON 4: As good as it gets
by 2 hours, 45 minutes ago
-
RyTuneX optimize Windows 10/11 tool
by 1 day, 19 hours ago
-
Can I just update from Win11 22H2 to 23H2?
by 1 day, 13 hours ago
-
Limited account permission error related to Windows Update
by 2 days, 9 hours ago
-
Another test post
by 2 days, 9 hours ago
-
Connect to someone else computer
by 2 days, 3 hours ago
-
Limit on User names?
by 2 days, 7 hours ago
-
Choose the right apps for traveling
by 1 day, 20 hours ago
-
BitLocker rears its head
by 1 day, 4 hours ago
-
Who are you? (2025 edition)
by 1 day, 3 hours ago
-
AskWoody at the computer museum, round two
by 1 day, 23 hours ago
-
A smarter, simpler Firefox address bar
by 2 days, 19 hours ago
-
Woody
by 3 days, 5 hours ago
-
24H2 has suppressed my favoured spider
by 1 day, 4 hours ago
-
GeForce RTX 5060 in certain motherboards could experience blank screens
by 3 days, 19 hours ago
-
MS Office 365 Home on MAC
by 3 days, 13 hours ago
-
Google’s Veo3 video generator. Before you ask: yes, everything is AI here
by 4 days, 9 hours ago
-
Flash Drive Eject Error for Still In Use
by 1 day, 4 hours ago
-
Windows 11 Insider Preview build 27863 released to Canary
by 5 days, 4 hours ago
-
Windows 11 Insider Preview build 26120.4161 (24H2) released to BETA
by 5 days, 4 hours ago
Remembering Woody
