Skip to main content

Simplicity Studio V5

1 CVEs product

Monthly

CVE-2025-11571 LOW Monitor

A command injection vulnerability exists in Silicon Labs Simplicity Studio V5 and Simplicity Installer Tool for Simplicity Studio V6, where vulnerable endpoints accept user-controlled input through URLs in JSON format, enabling arbitrary command execution. An attacker on the same network can exploit this to execute system commands, though parameter passing is restricted. While CVSS scoring is unavailable, the vulnerability represents a significant local network threat to development environments using these tools.

Command Injection Simplicity Studio V5 Simplicity Installer Tool Silicon Labs Tool Slt For Simplicity Studio V6
NVD VulDB
CVSS 4.0
2.1
EPSS
0.1%
EPSS 0% CVSS 2.1
LOW Monitor

A command injection vulnerability exists in Silicon Labs Simplicity Studio V5 and Simplicity Installer Tool for Simplicity Studio V6, where vulnerable endpoints accept user-controlled input through URLs in JSON format, enabling arbitrary command execution. An attacker on the same network can exploit this to execute system commands, though parameter passing is restricted. While CVSS scoring is unavailable, the vulnerability represents a significant local network threat to development environments using these tools.

Command Injection Simplicity Studio V5 Simplicity Installer Tool Silicon Labs Tool Slt For Simplicity Studio V6
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy