EUVD-2026-39354

🗓️ 25 Jun 2026 13:43:10Reported by EUVDType

Malformed GetProfileResponse in EmberZNet v9.0.2 and earlier causes out-of-bounds reads on interval entries.

Reporter	Title	Published	Views	Family All 6
ATTACKERKB	CVE-2026-47154	25 Jun 202613:43	–	attackerkb
CVE	CVE-2026-47154	25 Jun 202613:43	–	cve
Cvelist	CVE-2026-47154 Simple Metering GetProfileResponse interval-bounds bug in EmberZNet v9.0.2	25 Jun 202613:43	–	cvelist
NVD	CVE-2026-47154	25 Jun 202614:16	–	nvd
Positive Technologies	PT-2026-52407	25 Jun 202600:00	–	ptsecurity
Vulnrichment	CVE-2026-47154 Simple Metering GetProfileResponse interval-bounds bug in EmberZNet v9.0.2	25 Jun 202613:43	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "26d89c53-6e35-3005-a06e-edf489c2cab1",
        "vendor": {
          "name": "Silicon Labs"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "5f8eb604-4760-3908-87bd-37b96bfb92e6",
        "product": {
          "name": "EmberZNet",
          "vendor": {
            "name": "silabs.com"
          }
        },
        "product_version": "0 ≤9.0.2"
      }
    ]
  }
]

Source	Link
siliconlabs	www.siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/069Vm00000pEGPQIA4
github	www.github.com/SiliconLabsSoftware/sisdk-release/

25 Jun 2026 14:19Current

5.8Medium risk

Vulners AI Score5.8

CVSS 47.1

SSVC