Silicon Labs Secure NCP: Malicious Packet Can Crash System

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

2.4

Silicon Labs Secure NCP: Malicious Packet Can Crash System

CVE-2025-14055

Summary

An integer underflow error in the Silicon Labs Secure NCP host implementation can be exploited by a hacker to crash the system. This could lead to a denial-of-service, making the system unavailable. Fixing the issue requires an update from Silicon Labs.

Original title

An integer underflow vulnerability in Silicon Labs Secure NCP host implementation allows a buffer overread via a specially crafted packet.

Original description

An integer underflow vulnerability in Silicon Labs Secure NCP host implementation allows a buffer overread via a specially crafted packet.

nvd CVSS4.0 2.4

Vulnerability type

CWE-125 Out-of-bounds Read

CWE-191

https://community.silabs.com/068Vm00000gvJlq

Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026