Back to search
CVE-2025-8414
Published: Oct 17, 2025
Modified: Oct 17, 2025
PUBLISHED
Description
Due to improper input validation, a buffer overflow vulnerability is present in Zigbee EZSP Host Applications. If the buffer overflows, stack corruption is possible. In certain conditions, this could lead to arbitrary code execution. Access to a network key is required to exploit this vulnerability.
| Vendor | Product | Versions |
|---|---|---|
silabs.com | Simplicity SDK | affected 0 - <= 2025.6.0affected 0 - <= 2024.12.2 |
silabs.com | Gecko SDK | affected 0 - <= 4.4.6 |
Weaknesses (CWE)
References
https://community.silabs.com/068Vm00000WJZED
vendor-advisory
permissions-required
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now