Philips Hue Bridge model 2.X prior to and including version 1935144020 contains a Heap-based Buffer Overflow when handling a long ZCL string during the commissioning phase, resulting in a remote code execution.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: checkpoint

Published: 2020-01-23T21:20:17

Updated: 2024-08-04T08:47:40.940Z

Reserved: 2020-01-07T00:00:00

Link: CVE-2020-6007

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-01-23T22:15:10.277

Modified: 2024-11-21T05:34:58.290

Link: CVE-2020-6007

cve-icon Redhat

No data.