CVE & CISA-KEV Catalog

CVE-2025-14857

UNSCORED

Description

An improper access control vulnerability exists in Semtech LoRa LR11xxx transceivers running early versions of firmware where the memory write command accessible via the physical SPI interface fails to enforce write protection on the program call stack. An attacker with physical access to the SPI interface can overwrite stack memory to hijack program control flow and achieve limited arbitrary code execution. However, the impact is limited to the active attack session: the device's secure boot mechanism prevents persistent firmware modification, the crypto engine isolates cryptographic keys from direct firmware access, and all modifications are lost upon device reboot or loss of physical access.

How to fix

No published remediation has been found for this vulnerability's affected products yet.

Mitigation guidance may be in the linked vendor advisories in the References section below.

CVSS v3.1 Vector

No CVSS vector data available.

Exploit Intelligence

0.24%probability of exploitation in 30 days
15thpercentile

Low risk: more likely to be exploited than 15% of all known CVEs.

References

Other references1
Embed a live status badge for CVE-2025-14857
CVE-2025-14857 severity badge

Markdown

[![CVE-2025-14857](https://tridentstack.com/cve/badge/CVE-2025-14857.svg)](https://tridentstack.com/cve/CVE-2025-14857)

HTML

<a href="https://tridentstack.com/cve/CVE-2025-14857"><img src="https://tridentstack.com/cve/badge/CVE-2025-14857.svg" alt="CVE-2025-14857"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-04-08.