In EmberZNet v9.0.2 and earlier, malformed GetGroupMembership commands can trigger repeated reads past the end of the message payload and terminate the process. These messages must come from a device that has already joined the network, and no information leakage back to the sender was observed. Only devices supporting the Groups cluster may be impacted.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XSilabs Emberznet
APPSilabs≤ 9.0.2
Related vulnerabilities
TouchLink packets processed after timeout or out of range due to Operation on a Resource after Expiration and ...
In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the proce...
In EmberZNet v9.0.2 and earlier, malformed global ZCL messages can trigger out-of-bounds reads in framework pa...
In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the proce...
In EmberZNet v9.0.2 and earlier, malformed OTA requests can drive the OTA server parser into out-of-bounds rea...