CVE Catalog

CVE-2026-47145

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.25%

16th percentile — higher than 16% of all known CVEs

Summary

In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. Only devices that have already joined the network and support the Color Control cluster may be impacted.

Risk Assessment

Organizations may experience unexpected service interruptions, potentially leading to loss of service availability.

Recommendation

It is recommended to upgrade to a newer version of EmberZNet to mitigate the risks associated with this vulnerability.

Original NVD description (English source)

In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. These messages must come from a device that has already joined the network. Only devices supporting the Color Control cluster may be impacted.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS