HIGHVulnerability
Verified
Global

NVD HIGH: CVE-2026-47150 — In EmberZNet v9.0.2 and earlier, malformed IAS Zone enrollment messages can trig...

·Source: NIST NVD

Updated:

Executive Summary

In EmberZNet v9.0.2 and earlier, malformed IAS Zone enrollment messages can trigger an out-of-bounds state-table write and terminate the process. The size and location of this write is limited. These messages must come from a device that has already joined the network. Only devices supporting the IAS Zone cluster may be impacted.

Analysis

In EmberZNet v9.0.2 and earlier, malformed IAS Zone enrollment messages can trigger an out-of-bounds state-table write and terminate the process. The size and location of this write is limited. These messages must come from a device that has already joined the network. Only devices supporting the IAS Zone cluster may be impacted. CVSS Score: 7.1. Published: 2026-06-25T14:16:41.137.

Indicators of Compromise (1)

CVE (1)
CVE-2026-47150
Source Attribution

Originally published by NIST NVD on Jun 25, 2026. Verified by: NIST.

Related Threats