Bitwise Shift Vulnerability in Zephyr's PTP Subsystem
CVE-2026-5072

6.5MEDIUM

Key Information:

Vendor: Zephyrproject-rtos
Status: Zephyr
Vendor: CVE Published:; 22 May 2026

🔔 Create Zephyrproject-rtos Vulnerability Alert

What is CVE-2026-5072?

A vulnerability in Zephyr's Precision Time Protocol (PTP) subsystem allows remote attackers to exploit a bitwise shift error. By sending a specially crafted PTP_MSG_MANAGEMENT message with an unvalidated negative log_announce_interval value, attackers can provoke undefined behavior. This occurs during the processing of a PTP_MSG_ANNOUNCE message when the port_timer_set_timeout_random function attempts to compute a timeout based on the negative log_seconds value. If the value is excessively negative, it leads to shifts exceeding the 64-bit integer capacity, resulting in undefined behavior, potential system crashes, or logical errors due to erroneous timeout computations. This vulnerability illustrates significant risks, enabling resource starvation or incorrect operational logic in affected systems.

Affected Version(s)

Zephyr * <= 4.3

References

https://github.com/zephyrproject-rtos/zephyr/security/adv...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 22, 2026
Vulnerability Reserved
Mar 27, 2026

CVE-2026-5072 Data

JSON