Denial of Service Vulnerability in WF200/WGM160P Access Point Devices by Silicon Labs
CVE-2025-12986

6MEDIUM

Key Information:

Vendor: Silabs.com
Status: Gecko Sdk
Vendor: CVE Published:; 4 December 2025

What is CVE-2025-12986?

A vulnerability exists in WF200/WGM160P devices when configured as Access Points, enabling a denial of service due to processing malformed packets. This could disrupt normal operations, necessitating either an automatic recovery or a hard reset to restore functionality.

Affected Version(s)

Gecko SDK 0 <= 4.5.0

References

https://community.silabs.com/068Vm00000akaGr

vendor-advisorypermissions-required

CVSS V4

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2025
Vulnerability Reserved
Nov 10, 2025

CVE-2025-12986 Data

JSON

Silabs.com

What is CVE-2025-12986?

Affected Version(s)

References

CVSS V4

Timeline