EUVD-2025-29638

Malicious code in bioql PyPI...

CVE-2025-56562

An incorrect API discovered in Signify Wiz Connected 1.9.1 allows attackers to remotely launch a DoS on Wiz devices only requiring the MAC address...

CVE-2025-56562

An incorrect API discovered in Signify Wiz Connected 1.9.1 allows attackers to remotely launch a DoS on Wiz devices only requiring the MAC address...

CVE-2025-56562

An incorrect API discovered in Signify Wiz Connected 1.9.1 allows attackers to remotely launch a DoS on Wiz devices only requiring the MAC address...

CVE-2025-56562

An incorrect API discovered in Signify Wiz Connected 1.9.1 allows attackers to remotely launch a DoS on Wiz devices only requiring the MAC address...

CVE-2025-56562

CVE-2025-56562 affects Signify Wiz Connected v1.9.1. The issue is an incorrect API that enables remote denial of service on Wiz devices with only the MAC address, per multiple sources (NVD, Red Hat, CVE listing). The CVSS 3.1 vector indicates Network attack, low complexity, no privileges, with Av...

Signify Wiz Connected 安全漏洞

Signify Wiz Connected is a smart lighting platform from Signify USA. A security vulnerability exists in Signify Wiz Connected version 1.9.1, which stems from a poorly designed API that could lead to a remote denial of service attack...

PT-2025-38066

Name of the Vulnerable Software and Affected Versions: Signify Wiz Connected version 1.9.1 Description: An incorrect API allows attackers to remotely launch a Denial of Service DoS on Wiz devices. Exploitation requires only the MAC address of the target device. Recommendations: At the moment, the...

CVE-2025-56562

An incorrect API discovered in Signify Wiz Connected 1.9.1 allows attackers to remotely launch a DoS on Wiz devices only requiring the MAC address...

WiZ Connected WiZ Colors A60 Information Disclosure Vulnerability

WiZ Connected WiZ Colors A60 is a smart LED light from the Chinese company WiZ Connected. An information disclosure vulnerability exists in WiZ Colors A60 version 1.14.0, which stems from the device sending unnecessary information to the cloud controller server. No details of the vulnerability ar...

Authentication flaw

On Signify Philips Taolight Smart Wi-Fi Wiz Connected LED Bulb 9290022656 devices, an unprotected API lets remote users control the bulb's operation. Anyone can turn the bulb on or off, or change its color or brightness remotely. There is no authentication or encryption to use the control API. Th...

CVE-2019-18980

The CVE describes an authentication-less control API on Signify Philips Taolight Smart Wi‑Fi Wiz Connected LED Bulb 9290022656. A remote attacker with network access can operate the bulb: turn it on/off, adjust color, or change brightness, due to no authentication or encryption on the control API...