Home

Description

An incorrect API discovered in Signify Wiz Connected 1.9.1 allows attackers to remotely launch a DoS on Wiz devices only requiring the MAC address.

PUBLISHED Reserved 2025-08-17 | Published 2025-09-16 | Updated 2025-09-17 | Assigner mitre

References

signify.com

wiz.com

api.wiz.world/api/v2/light

archive.org/details/wiz-rtebug

cve.org (CVE-2025-56562)

nvd.nist.gov (CVE-2025-56562)

Download JSON