Ctrl + K
/ news / CVE
CVEPublished 2026-03-16Modified 2026-04-272 articles on news5 live referencesNVD data

CVE-2026-3555Philips · Hue_bridge_v2_firmware

Vulnerability data via NVD (ingested)

CVSS v3.1
8.0
HIGH
CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS percentile
19
Exploit Prediction Scoring System · top 81% of all CVEs
Weaknesses (CWE)
CWE-122Heap-based Buffer Overflow
Description

Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Philips Hue Bridge. User interaction is required to exploit this vulnerability in that the user must initiate the device pairing process. The specific flaw exists within the handling of custom Zigbee ZCL frames in the Model Info download functionality. The issue results from the lack of proper validation of the size of data prior to copying it to a fixed-size heap buffer. An attacker can leverage this vulnerability to execute code in the context of the device. Was ZDI-CAN-28276.

Timeline
Published 2026-03-16
Modified 2026-04-27

External references

NVDMITREExploit-DBSploitusVulnCheck

Search for exposed instances

Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).

Shodan · vuln tag0 hosts
vuln:CVE-2026-3555
Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · OS
os:"Hue Bridge V2 Firmware"
Hosts Shodan identified as running Hue Bridge V2 Firmware.
More intel sources (5)
Shodan report
vuln:CVE-2026-3555
Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2026-3555
Censys host search filtered to this CVE id.
grep.app
CVE-2026-3555
Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2026-3555
GitHub code search for direct mentions.
Google dork
"CVE-2026-3555" exploit -site:nvd.nist.gov
Write-ups and news, NVD excluded.

Known PoCs on GitHub (6)

CVE-2026-35556 repos
GhostTroops/TOPShell
TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things
★ 732·updated today
Vulnogram/VulnogramJavaScript
Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterprise features.
★ 234·updated 1mo ago
MateusVerass/nGixshellPython
nginx CVE scanner + RCE exploit framework (CVE-2026-42945 + 16 others)
★ 15·updated 1mo ago
svg153/awesome-starsJavaScript
★ 12·updated today
chnzzh/OpenSSL-CVE-libunknown
★ 7·updated today
lemon-mint/starsGo
★ 4·updated today
Articles on news mentioning CVE-2026-3555