Philips Hue Bridge
8 CVEs affecting Philips Hue Bridge. Latest disclosed: 2026-03-13. Critical: 0, High: 7.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-3560 | High | 8.8 | 2026-03-13 | Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent a… |
CVE-2026-3556 | High | 8.8 | 2026-03-13 | Philips Hue Bridge HomeKit Pair-Setup Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to e… |
CVE-2026-3559 | High | 8.1 | 2026-03-13 | Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass… |
CVE-2026-3558 | High | 8.1 | 2026-03-13 | Philips Hue Bridge HomeKit Accessory Protocol Transient Pairing Mode Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers… |
CVE-2026-3561 | High | 8.0 | 2026-03-13 | Philips Hue Bridge hk_hap characteristics Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers… |
CVE-2026-3557 | High | 8.0 | 2026-03-13 | Philips Hue Bridge hap_pair_verify_handler Sub-TLV Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-ad… |
CVE-2026-3555 | High | 8.0 | 2026-03-13 | Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjace… |
CVE-2026-3562 | Medium | 6.3 | 2026-03-13 | Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to execute a… |