Key Information Vulnerability Title: Bluetooth: peripheral: Invalid handling of malformed connection request Severity: Moderate CVE ID: CVE-2025-12890 Affected Versions: <=4.1.0 Patched Version: None CVSS v3 Base Score: 6.5 CVSS v3 Base Metrics - Attack Vector: Adjacent - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Confidentiality: None - Integrity: None - Availability: High CVSS v3 Base Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Weakness: CWE-703 Affected Software: Zephyr (zephyr) Reporter: Zewen Shang (Asset Research Group) Vulnerability Description Zephyr Version: v4.1.0-3070-g91dfa23f80ee Development Board: nrf52840DK Impact: After exploitation, the peripheral crashes and becomes unreachable. It stops advertising, so no central device can connect to it. Issue: Cannot reconnect after attack Detailed Description An attacker can trigger the crash by sending a connection request with invalid interval and specific conditions. Crash logs and videos demonstrate that the crash is reproducible. Patch Information Main Patch: #89955 Further Information Report vulnerabilities in Zephyr by opening an issue in the Zephyr project or by emailing the Zephyr vulnerability reporting address.