4 matches found
EUVD-2024-55531
Hirschmann Industrial IT products contain a heap overflow vulnerability in the HiLCOS web interface that allows unauthenticated remote attackers to trigger a denial-of-service condition by sending specially crafted requests to the web interface. Attackers can exploit this heap overflow to crash t...
CVE-2024-14033
Hirschmann EagleSDV firmware prior to 05.4.02 contains a denial-of-service vulnerability in TLS session establishment. Attackers can crash the device during TLS handshake by exploiting protocol downgrades to TLS 1.0 or TLS 1.1, interrupting service availability...
CVE-2024-14033
The CVE affects Hirschmann Industrial IT HiLCOS web interface and describes a heap overflow in the web UI that allows unauthenticated remote attackers to trigger a DoS by sending specially crafted requests. Impact is device crash and service disruption, particularly in configurations with Public ...
The vulnerability of the web interface of the HiLCOS operating system’s microprogrammed software for devices such as BAT-R, BAT-F, BAT450-F, BAT867-R, BAT867-F, WLC, and BAT Controller Virtual allows a perpetrator to cause service interruptions.
The vulnerability of the web interface of the HiLCOS operating system’s microprogrammed device management software for models BAT-R, BAT-F, BAT450-F, BAT867-R, BAT867-F, WLC, and BAT Controller Virtual is related to the possibility of buffer overflow in dynamic memory. Exploiting this vulnerabili...