CVE-2018-7580 in Hueinfo

Summary

by MITRE • 12/22/2020

Philips Hue is vulnerable to a Denial of Service attack. Sending a SYN flood on port tcp/80 will freeze Philips Hue's hub and it will stop responding. The &quot;hub&quot; will stop operating and be frozen until the flood stops. During the flood, the user won't be able to turn on/off the lights, and all of the hub's functionality will be unresponsive. The cloud service also won't work with the hub.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Disclosure

12/22/2020

Moderation

accepted

Entry

VDB-166660

CPE

ready

CWE

CWE-404 (confirmed)

Exploit

Download

CVSS

4.3 (VulDB)

EPSS

0.01658

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2018-7580
NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-7580
CVE Details	https://www.cvedetails.com/cve/CVE-2018-7580/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!