Skip to content

Multiple security vulnerabilities in WLED #5340

@breakingsystems

Description

@breakingsystems

What happened?

I reported a number of vulnerabilities privately via the Github "Report a vulnerability" feature.
It has been over one week now without a response/acknowledgement.

Could one of the WLED maintainers please have a look at https://github.com/wled/WLED/security/advisories/GHSA-2xwq-cxqw-wfv8 and leave a comment there?

Thank you!

To Reproduce Bug

Check https://github.com/wled/WLED/security/advisories/GHSA-2xwq-cxqw-wfv8

Expected Behavior

Check https://github.com/wled/WLED/security/advisories/GHSA-2xwq-cxqw-wfv8

Install Method

Binary from WLED.me

What version of WLED?

Latest

Which microcontroller/board are you seeing the problem on?

ESP32

Relevant log/trace output

Anything else?

No response

Code of Conduct

  • I agree to follow this project's Code of Conduct

Metadata

Metadata

Assignees

Labels

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions