RCE in Silabs.com Simplicity Installer Tool (Silicon Labs - Slt) For Studio V6

CVE-2025-11571

Vulnerable endpoints accept user-controlled input through a URL in JSON format which enables command execution. The commands allowed to execute can open executables. However, the commands cannot pass parameters or arguments.  To successful…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.001 (26.7th percentile) — read the EPSS interpretation.