CVE-2026-47148
Published: 25 June 2026
Summary
CVE-2026-47148 is a high-severity Out-of-bounds Read (CWE-125) vulnerability in Silabs Emberznet. Its CVSS base score is 7.1 (High).
Operationally, ranked at the 16.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-39403
Vulnerability details
In EmberZNet v9.0.2 and earlier, malformed GetGroupMembership commands can trigger repeated reads past the end of the message payload and terminate the process. These messages must come from a device that has already joined the network, and no information leakage…
more
back to the sender was observed. Only devices supporting the Groups cluster may be impacted.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.