The web interface of the Silicon Labs Simplicity Device Manager is exposed publicly and can be used to extract the NTLMv2 hash which an attacker could use to crack the user's domain password.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://community.silabs.com/a45Vm0000003UcfIAE |
Configurations
No configuration.
History
04 Dec 2025, 22:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-12-04 22:15
Updated : 2025-12-08 18:27
NVD link : CVE-2025-10285
Mitre link : CVE-2025-10285
CVE.ORG link : CVE-2025-10285
JSON object : View
Products Affected
No product.
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor