Belden Hirschmann Hisecos Eagle vulnerabilities
2 known vulnerabilities affecting belden/hirschmann_hisecos_eagle.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2018-25236CRITICALCVSS 9.3≤ 03.00.022026-04-03
CVE-2018-25236 [CRITICAL] CWE-287 CVE-2018-25236: Hirschmann HiOS and HiSecOS products RSP, RSPE, RSPS, RSPL, MSP, EES, EESX, GRS, OS, RED, EAGLE cont
Hirschmann HiOS and HiSecOS products RSP, RSPE, RSPS, RSPL, MSP, EES, EESX, GRS, OS, RED, EAGLE contain an authentication bypass vulnerability in the HTTP(S) management module that allows unauthenticated remote attackers to gain administrative access by crafting specially formed HTTP requests. Attackers can exploit improper authentication handling
cvelistv5nvd
CVE-2023-7342HIGHCVSS 8.7≥ 03.4.00, ≤ 04.1.002026-04-02
CVE-2023-7342 [HIGH] CWE-269 CVE-2023-7342: HiSecOS web server versions 03.4.00 prior to 04.1.00 contains a privilege escalation vulnerability t
HiSecOS web server versions 03.4.00 prior to 04.1.00 contains a privilege escalation vulnerability that allows authenticated users with operator or auditor roles to escalate privileges to the administrator role by sending specially crafted packets to the web server. Attackers can exploit this flaw to gain full administrative access to the affected devic
cvelistv5nvd