CVE-2025-12986

Description

When a WF200/WGM160P device is configured to operate as an Access Point, it may be vulnerable to a denial of service triggered by a malformed packet. The device may recover automatically or require a hard reset.

Weakness Type (CWE)

CWE-410 CWE-410

References

Other References

https://community.silabs.com/068Vm00000akaGr

Frequently Asked Questions

What is CVE-2025-12986? +

When a WF200/WGM160P device is configured to operate as an Access Point, it may be vulnerable to a denial of service triggered by a malformed packet. The device may recover automatically or require a hard reset.

How do I check if I'm vulnerable to CVE-2025-12986? +

You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

CVE-2025-27479 7.5

Insufficient resource pool in Windows Kerberos allows an unauthorized attacker to deny service over a network.

CVE-2025-41653 7.5

An unauthenticated remote attacker can exploit a denial-of-service vulnerability in the device's web server functionality by sending a specially crafted …

CVE-2025-0453 7.5

In mlflow/mlflow version 2.17.2, the `/graphql` endpoint is vulnerable to a denial of service attack. An attacker can create large …

CVE-2024-7392 6.5

ChargePoint Home Flex Bluetooth Low Energy Denial-of-Service Vulnerability. This vulnerability allows network-adjacent attackers to create a denial-of-service condition on affected …

CVE-2025-20103 6.5

Insufficient resource pool in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable …

CVE-2026-34019 5.3

When Bidirectional Forwarding Detection (BFD) is configured in Static and Dynamic routing protocols, undisclosed traffic can cause the Traffic Management …