Hue Bridge V2 Firmware Security Vulnerabilities and Issues — Hue Bridge V2 Firmware CVE List

PhilipsHue Bridge V2 Firmware

9 matches found

CVE•added 2020/01/23 9:20 p.m.•163 views

CVE-2020-6007

CVE-2020-6007 affects Philips Hue Bridge 2.X up to and including version 1935144020. The issue is a heap-based buffer overflow in handling a long ZCL string during the commissioning phase, which can lead to remote code execution. The vulnerability is tied to the ZigBee bridge component that proce...

7.9CVSS8AI score0.03684EPSS

CVE•added 2026/03/13 8:36 p.m.•8 views

CVE-2026-3557

CVE-2026-3557 affects Philips Hue Bridge via the hap_pair_verify_handler in the hk_hap service (listening on TCP 8080). The flaw is a heap-based buffer overflow caused by insufficient validation of user-supplied data length during Sub-TLV parsing, enabling network-adjacent attackers to execute co...

8CVSS7.8AI score0.00172EPSS

CVE•added 2026/03/13 8:37 p.m.•8 views

CVE-2026-3562

The CVE-2026-3562 entry concerns Philips Hue Bridge hk_hap with an Ed25519 signature verification bug in ed25519_sign_open. The issue allows network-adjacent attackers to bypass authentication and execute arbitrary code on affected installations without authentication. Root cause is improper veri...

8.8CVSS7AI score0.00023EPSS

CVE•added 2026/03/13 8:36 p.m.•7 views

CVE-2026-3559

Philips Hue Bridge is affected by a vulnerability in the HomeKit Accessory Protocol SRP authentication, due to a static nonce value that allows authentication bypass. The issue occurs in the SRP configuration used by the service listening on TCP port 8080 by default. Evidence from multiple source...

8.1CVSS7.3AI score0.00159EPSS

CVE•added 2026/03/13 8:36 p.m.•6 views

CVE-2026-3556

The CVE-2026-3556 issue affects Philips Hue Bridge, specifically in the hk_hap_pair_storage_put function used during HomeKit pairing. The vulnerability is a heap-based buffer overflow caused by inadequate validation of user-supplied data length prior to copying into a fixed-length heap buffer, al...

8.8CVSS7.8AI score0.00123EPSS

CVE•added 2026/03/13 8:37 p.m.•5 views

CVE-2026-3560

CVE-2026-3560 affects the Philips Hue Bridge (HomeKit hk_hap_pair_storage_put). The vulnerability is a heap-based buffer overflow in the hk_hap_pair_storage_put function of the HomeKit implementation, triggered by improper validation of the length of user-supplied data. The affected component lis...

8.8CVSS7.8AI score0.00123EPSS

CVE•added 2026/03/13 8:37 p.m.•5 views

CVE-2026-3561

CVE-2026-3561 affects Philips Hue Bridge hk_hap characteristics. A heap-based buffer overflow in the handling of PUT requests to the characteristics endpoint allows remote code execution. The flaw stems from insufficient validation of user-supplied data length before copying into a heap buffer, e...

8CVSS7.8AI score0.00133EPSS

CVE•added 2026/03/13 8:36 p.m.•4 views

CVE-2026-3555

CVE-2026-3555 describes a heap-based buffer overflow in the Zigbee stack of the Philips Hue Bridge. The flaw occurs in the handling of custom Zigbee ZCL frames during Model Info download, due to insufficient validation of data size before copying to a fixed-size heap buffer. This allows network-a...

8CVSS7.8AI score0.00071EPSS

CVE•added 2026/03/13 8:36 p.m.•3 views

CVE-2026-3558

CVE-2026-3558 affects Philips Hue Bridge via HomeKit Accessory Protocol. The flaw lies in the service configuration listening on TCP port 8080, where authentication is not required, enabling network-adjacent attackers to bypass authentication and access sensitive functionality. Impact is high for...

8.1CVSS7.3AI score0.00159EPSS