Simplicity SDK
by Silabs.com
Source repositories
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-3017 | Med | 0.42 | 6.5 | 0.00 | Jun 27, 2024 | In a Silicon Labs multi-protocol gateway, a corrupt pointer to buffered data on a multi-protocol radio co-processor (RCP) causes the OpenThread Border Router(OTBR) application task running on the host platform to crash, allowing an attacker to cause a temporary… | ||
| CVE-2025-2329 | Med | 0.34 | — | 0.00 | Jul 25, 2025 | In high traffic environments, a Silicon Labs OpenThread RCP (see impacted versions) fails to clear the SPI transmit buffer and may send a corrupt packet over SPI to its host, causing the host to reset the RCP which results in a denial of service. | ||
| CVE-2024-12975 | Low | 0.07 | — | 0.00 | Mar 7, 2025 | A buffer overread can occur in the CPC application when operating in full duplex SPI upon receiving an invalid packet over the SPI interface. | ||
| CVE-2025-12131 | 0.00 | — | 0.00 | Feb 5, 2026 | A truncated 802.15.4 packet can lead to an assert, resulting in a denial of service. | |||
| CVE-2023-41093 | 0.00 | — | 0.00 | Jul 12, 2024 | Use After Free vulnerability in Silicon Labs Bluetooth SDK on 32 bit, ARM may allow an attacker with precise timing capabilities to intercept a small number of packets intended for a recipient that has left the network.This issue affects Silabs Bluetooth SDK: through 8.0.0. |
- risk 0.42cvss 6.5epss 0.00
In a Silicon Labs multi-protocol gateway, a corrupt pointer to buffered data on a multi-protocol radio co-processor (RCP) causes the OpenThread Border Router(OTBR) application task running on the host platform to crash, allowing an attacker to cause a temporary…
- risk 0.34cvss —epss 0.00
In high traffic environments, a Silicon Labs OpenThread RCP (see impacted versions) fails to clear the SPI transmit buffer and may send a corrupt packet over SPI to its host, causing the host to reset the RCP which results in a denial of service.
- risk 0.07cvss —epss 0.00
A buffer overread can occur in the CPC application when operating in full duplex SPI upon receiving an invalid packet over the SPI interface.
- CVE-2025-12131Feb 5, 2026risk 0.00cvss —epss 0.00
A truncated 802.15.4 packet can lead to an assert, resulting in a denial of service.
- CVE-2023-41093Jul 12, 2024risk 0.00cvss —epss 0.00
Use After Free vulnerability in Silicon Labs Bluetooth SDK on 32 bit, ARM may allow an attacker with precise timing capabilities to intercept a small number of packets intended for a recipient that has left the network.This issue affects Silabs Bluetooth SDK: through 8.0.0.