3 matches found
CVE-2024-14033
Hirschmann EagleSDV firmware prior to 05.4.02 contains a denial-of-service vulnerability in TLS session establishment. Attackers can crash the device during TLS handshake by exploiting protocol downgrades to TLS 1.0 or TLS 1.1, interrupting service availability...
CVE-2024-14033 Hirschmann EagleSDV Denial of Service via TLS
Hirschmann EagleSDV firmware prior to 05.4.02 contains a denial-of-service vulnerability in TLS session establishment. Attackers can crash the device during TLS handshake by exploiting protocol downgrades to TLS 1.0 or TLS 1.1, interrupting service availability...
CVE-2024-14033
The CVE affects Hirschmann Industrial IT HiLCOS web interface and describes a heap overflow in the web UI that allows unauthenticated remote attackers to trigger a DoS by sending specially crafted requests. Impact is device crash and service disruption, particularly in configurations with Public ...