Lucene search
K

35 matches found

CVE
CVE
added 2026/04/03 9:42 p.m.7 views

CVE-2015-10148

CVE-2015-10148 concerns Hirschmann HiLCOS devices: OpenBAT, WLC, BAT300, BAT54 prior to 8.80 and OpenBAT prior to 9.10 are shipped with identical default SSH and SSL keys that cannot be changed. This enables unauthenticated remote attackers to decrypt or intercept encrypted management communicati...

8.8CVSS5.9AI score0.00291EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/03 9:42 p.m.4 views

CVE-2015-10148 Hirschmann HiLCOS Hard-coded Credentials SSH SSL Keys

Hirschmann HiLCOS devices OpenBAT, WLC, BAT300, BAT54 prior to 8.80 and OpenBAT prior to 9.10 are shipped with identical default SSH and SSL keys that cannot be changed, allowing unauthenticated remote attackers to decrypt or intercept encrypted management communications. Attackers can perform...

8.8CVSS5.9AI score0.00291EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/03 9:42 p.m.4 views

CVE-2015-10148

Hirschmann HiLCOS devices OpenBAT, WLC, BAT300, BAT54 prior to 8.80 and OpenBAT prior to 9.10 are shipped with identical default SSH and SSL keys that cannot be changed, allowing unauthenticated remote attackers to decrypt or intercept encrypted management communications. Attackers can perform...

8.8CVSS5.9AI score0.00291EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.10 views

Belden多款产品 安全漏洞

Belden Hirschmann HiLCOS OpenBAT, among others, are products of the American company Belden. Belden Hirschmann HiLCOS OpenBAT is an industrial-grade wireless local area network device. Belden Hirschmann HiLCOS BAT450 is an industrial-grade wireless local area network access point device. Belden...

8.8CVSS5.9AI score0.00291EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.5 views

PT-2026-30246

Hirschmann HiLCOS Classic Platform switches Classic L2E, L2P, L3E, L3P versions prior to 09.0.06 and Classic L2B prior to 05.3.07 contain a credential exposure vulnerability where user passwords are synchronized with SNMPv1/v2 community strings and transmitted in plaintext when the feature is...

8.6CVSS5.9AI score0.00213EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.11 views

Belden多款产品 访问控制错误漏洞

Belden Hirschmann HiLCOS OpenBAT, among others, are products of the American company Belden. Belden Hirschmann HiLCOS OpenBAT is an industrial-grade wireless local area network device. Belden Hirschmann HiLCOS BAT450 is an industrial-grade wireless local area network access point device. Belden...

5.4CVSS5.8AI score0.00204EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.8 views

Belden Hirschmann HiLCOS OpenBAT 访问控制错误漏洞

Belden Hirschmann HiLCOS OpenBAT is an industrial-grade wireless local area network device developed by the American company Belden. Belden Hirschmann HiLCOS OpenBAT has a vulnerability related to access control. This vulnerability stems from a firewall bypass issue in IPv6 IPsec deployments, whi...

9.3CVSS5.8AI score0.00319EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.7 views

Belden多款产品 安全漏洞

Belden Hirschmann HiLCOS OpenBAT, among others, are products of the American company Belden. Belden Hirschmann HiLCOS OpenBAT is an industrial-grade wireless local area network device. Belden Hirschmann HiLCOS BAT450 is an industrial-grade wireless local area network access point device. Belden...

8.6CVSS5.9AI score0.00213EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.3 views

PT-2026-30257

Hirschmann HiLCOS products OpenBAT, BAT450, WLC, BAT867 contains a firewall filtering vulnerability that fails to correctly filter IPv4 multicast and broadcast traffic when management IP address filtering is disabled, allowing configured filter rules to be bypassed. Attackers with network access...

5.4CVSS5.8AI score0.00204EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/02 9:32 p.m.4 views

EUVD-2024-55531

Hirschmann Industrial IT products contain a heap overflow vulnerability in the HiLCOS web interface that allows unauthenticated remote attackers to trigger a denial-of-service condition by sending specially crafted requests to the web interface. Attackers can exploit this heap overflow to crash t...

8.7CVSS6AI score0.0043EPSS
Exploits0References3
NVD
NVD
added 2026/04/02 9:16 p.m.4 views

CVE-2024-14033

Hirschmann EagleSDV firmware prior to 05.4.02 contains a denial-of-service vulnerability in TLS session establishment. Attackers can crash the device during TLS handshake by exploiting protocol downgrades to TLS 1.0 or TLS 1.1, interrupting service availability...

8.7CVSS0.0043EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/02 8:40 p.m.1 views

CVE-2024-14033

Hirschmann EagleSDV firmware prior to 05.4.02 contains a denial-of-service vulnerability in TLS session establishment. Attackers can crash the device during TLS handshake by exploiting protocol downgrades to TLS 1.0 or TLS 1.1, interrupting service availability...

8.7CVSS5.8AI score0.0043EPSS
Exploits0References5
CVE
CVE
added 2026/04/02 8:40 p.m.7 views

CVE-2024-14033

The CVE affects Hirschmann Industrial IT HiLCOS web interface and describes a heap overflow in the web UI that allows unauthenticated remote attackers to trigger a DoS by sending specially crafted requests. Impact is device crash and service disruption, particularly in configurations with Public ...

8.7CVSS6AI score0.0043EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.10 views

The vulnerability of the web interface of the HiLCOS operating system’s microprogrammed software for devices such as BAT-R, BAT-F, BAT450-F, BAT867-R, BAT867-F, WLC, and BAT Controller Virtual allows a perpetrator to cause service interruptions.

The vulnerability of the web interface of the HiLCOS operating system’s microprogrammed device management software for models BAT-R, BAT-F, BAT450-F, BAT867-R, BAT867-F, WLC, and BAT Controller Virtual is related to the possibility of buffer overflow in dynamic memory. Exploiting this vulnerabili...

7.8CVSS5.9AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/02/25 12:0 a.m.5 views

The vulnerability in the implementation of IPSec protocols for the HiLCOS operating system in wireless access points OpenBAT and BAT450-F allows a hacker to circumvent firewall policies.

The vulnerability of the implementation of IPSec protocols in the HiLCOS operating system for wireless access points OpenBAT and BAT450-F is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to circumvent firewall policies from a remote...

10CVSS5.5AI score
Exploits0References1Affected Software1
Rows per page
Query Builder