{"id":"CVE-2025-1394","summary":"Denial of Service (DoS) vulnerabilitiey in Zigbee library","details":"The Ember ZNet stack’s packet buffer manager may read out of bound memory leading to an assert, causing a Denial of Service (DoS).","modified":"2026-07-08T07:07:55.031842132Z","published":"2025-07-30T08:11:28.403Z","database_specific":{"cna_assigner":"Silabs","cwe_ids":["CWE-252"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/1xxx/CVE-2025-1394.json"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/1xxx/CVE-2025-1394.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-1394"},{"type":"ADVISORY","url":"https://www.silabs.com/documents/public/release-notes/emberznet-release-notes-7.5.0.0.pdf"},{"type":"ADVISORY","url":"https://www.silabs.com/documents/public/release-notes/emberznet-release-notes-8.0.3.0.pdf"},{"type":"ADVISORY","url":"https://www.silabs.com/documents/public/release-notes/emberznet-release-notes-8.1.0.0.pdf"},{"type":"REPORT","url":"https://community.silabs.com/068Vm00000SkHNX"},{"type":"PACKAGE","url":"https://github.com/SiliconLabs/gecko_sdk"},{"type":"PACKAGE","url":"https://github.com/SiliconLabs/simplicity_sdk"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/siliconlabs/gecko_sdk","events":[{"introduced":"0"},{"last_affected":"9ad9e19638a2d0ce01ce21d32f5049c5f1b21d70"}],"database_specific":{"source":"AFFECTED_FIELD","extracted_events":[{"introduced":"0"},{"last_affected":"4.4.4"}]}}],"versions":["v4.4.4","v4.4.3","v4.4.2","v4.4.1","v4.3.2","v4.4.0","v4.3.1","v4.2.3","v4.3.0","v4.2.2","v4.2.1","v4.2.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-1394.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/siliconlabs/simplicity_sdk","events":[{"introduced":"0"},{"last_affected":"36e12f01947c2bed82922015e87b926df0745bc2"}],"database_specific":{"source":"AFFECTED_FIELD","extracted_events":[{"introduced":"0"},{"last_affected":"2024.6.2"}]}}],"versions":["v2024.6.2","v2024.6.1-0","v2024.6.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-1394.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"}]}