Silabs Emberznet
17 CVEs affecting Silabs Emberznet. Latest disclosed: 2026-06-25. Critical: 1, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-41094 | Critical | 10.0 | 2023-10-04 | TouchLink packets processed after timeout or out of range due to Operation on a Resource after Expiration and Missing Release of Resource after Effective Lifet… |
CVE-2026-47151 | High | 7.1 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, malformed ClearWeekdaySchedule messages can trigger out-of-bounds writes into Door Lock schedule state. The size and location… |
CVE-2026-47150 | High | 7.1 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, malformed IAS Zone enrollment messages can trigger an out-of-bounds state-table write and terminate the process. The size and… |
CVE-2026-47147 | High | 7.1 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, malformed OTA requests can drive the OTA server parser into out-of-bounds reads. A limited amount of data from RAM is read bac… |
CVE-2026-4526 | Medium | 6.5 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, malformed global ZCL messages can trigger out-of-bounds reads in framework parsing logic and terminate the process. These mess… |
CVE-2026-47154 | Medium | 6.5 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, a malformed GetProfileResponse message can trigger out-of-bounds reads while iterating interval entries and terminate the proc… |
CVE-2026-47153 | Medium | 6.5 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, a malformed Level Control Step command can terminate the process through a divide-by-zero fault. This command must come from a… |
CVE-2026-47152 | Medium | 6.5 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, a malformed Level Control Move command can terminate the process through a divide-by-zero fault. This command must come from a… |
CVE-2026-47149 | Medium | 6.5 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, malformed or out-of-range Door Lock user identifiers can trigger out-of-bounds table reads and terminate the process. These me… |
CVE-2026-47148 | Medium | 6.5 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, malformed GetGroupMembership commands can trigger repeated reads past the end of the message payload and terminate the process… |
CVE-2026-47146 | Medium | 6.5 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. These messages must come from a device that h… |
CVE-2026-47145 | Medium | 6.5 | 2026-06-25 | In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. These messages must come from a device that h… |
CVE-2022-24938 | Medium | 6.5 | 2022-11-14 | A malformed packet causes a stack overflow in the Ember ZNet stack. This causes an assert which leads to a reset, immediately clearing the error. |
CVE-2022-24937 | Medium | 6.5 | 2022-11-14 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Silicon Labs Ember ZNet allows Overflow Buffers. |
CVE-2023-51392 | Medium | 6.2 | 2024-02-23 | Ember ZNet between v7.2.0 and v7.4.0 used software AES-CCM instead of integrated hardware cryptographic accelerators, potentially increasing risk of electromag… |
CVE-2023-51394 | Medium | 5.3 | 2024-02-23 | High traffic environments may result in NULL Pointer Dereference vulnerability in Silicon Labs's Ember ZNet SDK before v7.4.0, causing a system crash. |
CVE-2023-51393 | Medium | 5.3 | 2024-02-23 | Due to an allocation of resources without limits, an uncontrolled resource consumption vulnerability exists in Silicon Labs Ember ZNet SDK prior to v7.4.0.0 (d… |