CVE Catalog

CVE-2026-47152

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.25%

16th percentile — higher than 16% of all known CVEs

Summary

In EmberZNet v9.0.2 and earlier, a malformed Level Control Move command can terminate the process through a divide-by-zero fault. This command must come from a device that has already joined the network.

Risk Assessment

The risk to the organization is that devices supporting the Level Control cluster may crash, leading to system downtime.

Recommendation

It is recommended to upgrade to a newer version of EmberZNet to mitigate the risk associated with this vulnerability.

Original NVD description (English source)

In EmberZNet v9.0.2 and earlier, a malformed Level Control Move command can terminate the process through a divide-by-zero fault. This command must come from a device that has already joined the network. Only devices supporting the Level Control cluster may be impacted.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS