Cyber Resilience

CVE-2026-3562

High

Published: 16 March 2026

Published
16 March 2026
Modified
27 April 2026
KEV Added
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0029 20.5th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2026-3562 is a high-severity Improper Verification of Cryptographic Signature (CWE-347) vulnerability in Philips Hue Bridge V2 Firmware. Its CVSS base score is 8.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation of Remote Services (T1210); ranked at the 20.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SC-13 (Cryptographic Protection) and SC-23 (Session Authenticity).

Deeper analysis

CVE-2026-3562 is an authentication bypass vulnerability affecting the Philips Hue Bridge, specifically in the hk_hap component's ed25519_sign_open function. The flaw arises from improper verification of an Ed25519 cryptographic signature, classified under CWE-347. This issue enables network-adjacent attackers to execute arbitrary code on vulnerable installations without requiring authentication, as published on 2026-03-16 with a CVSS v3.1 base score of 8.8 (AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

Network-adjacent attackers can exploit this vulnerability by leveraging the signature verification failure to bypass authentication mechanisms on the Philips Hue Bridge. No user privileges or interaction are needed, allowing low-complexity attacks that grant high-level impacts on confidentiality, integrity, and availability, including full arbitrary code execution on the device.

The Zero Day Initiative detailed this issue in advisory ZDI-26-160, originally tracked as ZDI-CAN-28480. Security practitioners should review this advisory for recommended mitigations and any available patches.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Philips Hue Bridge. Authentication is not required to exploit this vulnerability. The specific flaw exists within the…

more

ed25519_sign_open function. The issue results from improper verification of a cryptographic signature. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-28480.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1210 Exploitation of Remote Services Lateral Movement
Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of a network.
T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

Unauthenticated RCE via signature verification flaw in network-adjacent service directly enables remote service exploitation for initial access/privileges.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-3556Same product: Philips Hue Bridge V2
CVE-2026-3560Same product: Philips Hue Bridge V2
CVE-2026-3559Same product: Philips Hue Bridge V2
CVE-2026-3558Same product: Philips Hue Bridge V2
CVE-2026-20965Shared CWE-347
CVE-2025-36418Shared CWE-347
CVE-2026-40372Shared CWE-347
CVE-2026-1529Shared CWE-347
CVE-2025-20206Shared CWE-347
CVE-2025-23369Shared CWE-347

Affected Assets

philips
hue bridge v2 firmware
≤ 1975170000

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Requires timely identification, reporting, and remediation of the improper Ed25519 signature verification flaw to prevent authentication bypass and arbitrary code execution.

prevent

Mandates implementation of cryptographic mechanisms, including proper signature verification, to protect against authentication bypass vulnerabilities like the flawed ed25519_sign_open function.

prevent

Protects the authenticity of communications sessions using cryptographic methods, directly mitigating the signature verification failure that enables authentication bypass on the Philips Hue Bridge.

References