CVE-2025-1394

MEDIUM

Zigbee Stack < 4.4.4 and < 2024.6.2 - Denial of Service via Packet Buffer Manager

Title source: llm
STIX 2.1

Description

The Ember ZNet stack’s packet buffer manager may read out of bound memory leading to an assert, causing a Denial of Service (DoS).

References (4)

Core 4

Scores

CVSS v4 5.9
EPSS 0.0022
EPSS Percentile 11.9%
CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-252
Status published
Products (2)
silabs.com/Zigbee Stack < 2024.6.2
silabs.com/Zigbee Stack < 4.4.4
Published Jul 30, 2025
Tracked Since Feb 18, 2026