Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass Vulnerability

A network-adjacent attacker can execute arbitrary code on Philips Hue Bridge devices without authentication due to CVE-2026-3562, a medium-severity vulnerability rated 6.3 on the CVSS scale. This means an attacker on the same network segment could gain full control of affected Hue Bridge installations. Security teams should prioritize patching these devices and consider network segmentation to isolate IoT devices from critical systems.