Vulnerability in Silabs.com Simplicity Sdk

CVE-2025-7432

DPA countermeasures in Silicon Labs' Series 2 devices are not reseeded under certain conditions. This may allow an attacker to eventually extract secret keys through a DPA attack.

EPSS: 0.000 (2.8th percentile) — read the EPSS interpretation.

Affected products

Silabs.com Simplicity Sdk — versions 0

Weakness classification (CWE)

CWE-331 — Insufficient Entropy

References

community.silabs.com/068Vm00000b9fBW (vendor-advisory, permissions-required)