CVE-2026-47154
- EPSS 0.25%
- Veröffentlicht 25.06.2026 13:43:10
- Zuletzt bearbeitet 25.06.2026 18:35:01
In EmberZNet v9.0.2 and earlier, a malformed GetProfileResponse message can trigger out-of-bounds reads while iterating interval entries and terminate the process. These messages must come from a device that has already joined the network, and no inf...
CVE-2026-47153
- EPSS 0.25%
- Veröffentlicht 25.06.2026 13:42:16
- Zuletzt bearbeitet 25.06.2026 18:37:51
In EmberZNet v9.0.2 and earlier, a malformed Level Control Step command can terminate the process through a divide-by-zero fault. This command must come from a device that has already joined the network. Only devices supporting the Level Control clus...
CVE-2026-47152
- EPSS 0.25%
- Veröffentlicht 25.06.2026 13:41:28
- Zuletzt bearbeitet 25.06.2026 18:38:11
In EmberZNet v9.0.2 and earlier, a malformed Level Control Move command can terminate the process through a divide-by-zero fault. This command must come from a device that has already joined the network. Only devices supporting the Level Control clus...
CVE-2026-47151
- EPSS 0.22%
- Veröffentlicht 25.06.2026 13:40:36
- Zuletzt bearbeitet 25.06.2026 18:51:37
In EmberZNet v9.0.2 and earlier, malformed ClearWeekdaySchedule messages can trigger out-of-bounds writes into Door Lock schedule state. The size and location of this data is limited. These messages must come from a device that has already joined the...
CVE-2026-47150
- EPSS 0.22%
- Veröffentlicht 25.06.2026 13:39:32
- Zuletzt bearbeitet 25.06.2026 18:49:11
In EmberZNet v9.0.2 and earlier, malformed IAS Zone enrollment messages can trigger an out-of-bounds state-table write and terminate the process. The size and location of this write is limited. These messages must come from a device that has already ...
CVE-2026-47149
- EPSS 0.25%
- Veröffentlicht 25.06.2026 13:38:40
- Zuletzt bearbeitet 25.06.2026 18:48:40
In EmberZNet v9.0.2 and earlier, malformed or out-of-range Door Lock user identifiers can trigger out-of-bounds table reads and terminate the process. These messages must come from a device that has already joined the network, and no information leak...
CVE-2026-47148
- EPSS 0.25%
- Veröffentlicht 25.06.2026 13:37:36
- Zuletzt bearbeitet 25.06.2026 18:48:20
In EmberZNet v9.0.2 and earlier, malformed GetGroupMembership commands can trigger repeated reads past the end of the message payload and terminate the process. These messages must come from a device that has already joined the network, and no inform...
CVE-2026-47147
- EPSS 0.23%
- Veröffentlicht 25.06.2026 13:36:36
- Zuletzt bearbeitet 25.06.2026 18:47:57
In EmberZNet v9.0.2 and earlier, malformed OTA requests can drive the OTA server parser into out-of-bounds reads. A limited amount of data from RAM is read back to the requester. The size and location of this data is limited. These requests must come...
CVE-2026-47146
- EPSS 0.25%
- Veröffentlicht 25.06.2026 13:35:41
- Zuletzt bearbeitet 25.06.2026 18:46:31
In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. These messages must come from a device that has already joined the network. Only devices supporting the Color Control cluster may be imp...
CVE-2026-47145
- EPSS 0.25%
- Veröffentlicht 25.06.2026 13:34:48
- Zuletzt bearbeitet 25.06.2026 18:46:10
In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. These messages must come from a device that has already joined the network. Only devices supporting the Color Control cluster may be imp...