Vulnerabilities > CVE-2020-6007 - Out-of-bounds Write vulnerability in Philips HUE Bridge V2 Firmware
Attack vector
ADJACENT_NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Philips Hue Bridge model 2.X prior to and including version 1935144020 contains a Heap-based Buffer Overflow when handling a long ZCL string during the commissioning phase, resulting in a remote code execution.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
The Hacker News
| id | THN:E890F3397DAC75C42DB476D17217A3CB |
| last seen | 2020-02-05 |
| modified | 2020-02-05 |
| published | 2020-02-05 |
| reporter | The Hacker News |
| source | https://thehackernews.com/2020/02/philips-smart-light-bulb-hacking.html |
| title | Flaw in Philips Smart Light Bulbs Exposes Your WiFi Network to Hackers |