CVE-2026-3562
Published: 16 March 2026
Summary
CVE-2026-3562 is a high-severity Improper Verification of Cryptographic Signature (CWE-347) vulnerability in Philips Hue Bridge V2 Firmware. Its CVSS base score is 8.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation of Remote Services (T1210); ranked at the 20.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SC-13 (Cryptographic Protection) and SC-23 (Session Authenticity).
Deeper analysis
CVE-2026-3562 is an authentication bypass vulnerability affecting the Philips Hue Bridge, specifically in the hk_hap component's ed25519_sign_open function. The flaw arises from improper verification of an Ed25519 cryptographic signature, classified under CWE-347. This issue enables network-adjacent attackers to execute arbitrary code on vulnerable installations without requiring authentication, as published on 2026-03-16 with a CVSS v3.1 base score of 8.8 (AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
Network-adjacent attackers can exploit this vulnerability by leveraging the signature verification failure to bypass authentication mechanisms on the Philips Hue Bridge. No user privileges or interaction are needed, allowing low-complexity attacks that grant high-level impacts on confidentiality, integrity, and availability, including full arbitrary code execution on the device.
The Zero Day Initiative detailed this issue in advisory ZDI-26-160, originally tracked as ZDI-CAN-28480. Security practitioners should review this advisory for recommended mitigations and any available patches.
OWASP Top 10 for Web (2025)
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-12164
Vulnerability details
Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Philips Hue Bridge. Authentication is not required to exploit this vulnerability. The specific flaw exists within the…
more
ed25519_sign_open function. The issue results from improper verification of a cryptographic signature. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-28480.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Unauthenticated RCE via signature verification flaw in network-adjacent service directly enables remote service exploitation for initial access/privileges.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Requires timely identification, reporting, and remediation of the improper Ed25519 signature verification flaw to prevent authentication bypass and arbitrary code execution.
Mandates implementation of cryptographic mechanisms, including proper signature verification, to protect against authentication bypass vulnerabilities like the flawed ed25519_sign_open function.
Protects the authenticity of communications sessions using cryptographic methods, directly mitigating the signature verification failure that enables authentication bypass on the Philips Hue Bridge.