Hirschmann HiOS 07.1.01, 07.1.02, and 08.1.00 through 08.5.xx and HiSecOS 03.3.00 through 03.5.01 allow remote attackers to change the credentials of existing users.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HBelden Hirschmann Hios
OSBelden07.1.0107.1.0208.1.00 – 08.6.00 (bez)Belden Hisecos
OSBelden03.3.00 – 03.5.01
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
Related vulnerabilities
CVE-2020-6994CRITICAL9.8ten sam produkt
A buffer overflow vulnerability was found in some devices of Hirschmann Automation and Control HiOS and HiSecO...
CVE-2019-12262CRITICAL9.8ten sam produkt
Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET s...
CVE-2019-12255CRITICAL9.8ten sam produkt
Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnera...
CVE-2019-12260CRITICAL9.8ten sam produkt
Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 2 of 4). This is an IPNET sec...
CVE-2019-12256CRITICAL9.8ten sam produkt
Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the IPv4 component. There is an IPNET security vulnera...