CVE Field Guide
About Us
CVE-2026-2815
PUBLISHED
Incorrect use of the PUF key for user key generation in EFR32xG27 results in predictable keys
Assigner:
Silabs
Reserved:
19.02.2026
Published:
25.06.2026
Updated:
25.06.2026
Incorrect use of the PUF key for user key generation in EFR32xG27 results in predictable keys
Metrics
CVSS 4.0
CVSS Vector:
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:N
CVSS Score:
8.4
CVSS score
8.4
Exploitability Metrics
Vulnerable System Impact Metrics
Subsequent System Impact Metrics
Attack Vector
Adjacent
Confidentiality
High
Confidentiality
High
Attack Complexity
Low
Integrity
None
Integrity
High
Attack Requirements
None
Availability
None
Availability
None
Privileges Required
None
User Interaction
None
CVSS 4.0
Product Status
Vendor
Silicon Labs
Product
SiSDK
Versions
Default:
unaffected
affected from 0 to 2025.12.1 (incl.)
References
https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/069Vm00000kDYsfIAG?operationContext=S1
https://github.com/SiliconLabsSoftware/sisdk-release
Problem Types
CWE-339 Small seed space in PRNG
CWE
Impacts
CAPEC-112 Brute Force