Hue bridge v2 firmware
This hub aggregates every CVE we track for Hue bridge v2 firmware, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.
9
CVEs tracked
0
Critical
9
High
0
In CISA KEV
Severity distribution
HIGH9
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
8
0
0
0
2024-072026-06
Latest CVEs
The 9 most recently published vulnerabilities affecting Hue bridge v2 firmware.
- CVE-2026-3562Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass Vulnerability8.8
- CVE-2026-3561Philips Hue Bridge hk_hap characteristics Heap-based Buffer Overflow Remote Code Execution Vulnerability8.0
- CVE-2026-3560Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-based Buffer Overflow Remote Code Execution Vulnerability8.8
- CVE-2026-3559Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability8.1
- CVE-2026-3558Philips Hue Bridge HomeKit Accessory Protocol Transient Pairing Mode Authentication Bypass Vulnerability8.1
- CVE-2026-3557Philips Hue Bridge hap_pair_verify_handler Sub-TLV Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability8.0
- CVE-2026-3556Philips Hue Bridge HomeKit Pair-Setup Heap-based Buffer Overflow Remote Code Execution Vulnerability8.8
- CVE-2026-3555Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code Execution Vulnerability8.0
- CVE-2020-6007Philips Hue Bridge model 2.X prior to and including version 1935144020 contains a Heap-based Buffer Overflow when handling a long ZCL string during the commissioning phase, resulting in a remote co...7.9
Product normalization is registry-driven with AI assist and human review. How it works