Belden Hirschmann Hios — known CVE vulnerabilities
Every CVE whose affected-product data names Belden Hirschmann Hios, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2021-27734 — CVSS 9.8 (critical): Hirschmann HiOS 07.1.01, 07.1.02, and 08.1.00 through 08.5.xx and HiSecOS 03.3.00 through 03.5.01 allow remote attackers to change the…
CVE-2019-12256 — CVSS 9.8 (critical): Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the IPv4 component. There is an IPNET security vulnerability: Stack overflow in the…
CVE-2019-12260 — CVSS 9.8 (critical): Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 2 of 4). This is an IPNET security vulnerability: TCP…
CVE-2019-12261 — CVSS 9.8 (critical): Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 3 of 4). This is an IPNET security…
CVE-2019-12262 — CVSS 9.8 (critical): Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerability…
CVE-2020-6994 — CVSS 9.8 (critical): A buffer overflow vulnerability was found in some devices of Hirschmann Automation and Control HiOS and HiSecOS. The vulnerability is due…
CVE-2019-12255 — CVSS 9.8 (critical): Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer =…
CVE-2019-12257 — CVSS 8.8 (high): Wind River VxWorks 6.6 through 6.9 has a Buffer Overflow in the DHCP client component. There is an IPNET security vulnerability: Heap…
CVE-2019-12263 — CVSS 8.1 (high): Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There is an IPNET security vulnerability: TCP…
CVE-2019-12258 — CVSS 7.5 (high): Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection…
CVE-2019-12259 — CVSS 7.5 (high): Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and vx7 has an array index error in the IGMPv3 client component. There is an IPNET security…
CVE-2019-12264 — CVSS 7.1 (high): Wind River VxWorks 6.6, 6.7, 6.8, 6.9.3, 6.9.4, and Vx7 has Incorrect Access Control in IPv4 assignment by the ipdhcpc DHCP client…
CVE-2020-9307 — CVSS 6.5 (medium): Hirschmann OS2, RSP, and RSPE devices before HiOS 08.3.00 allow a denial of service. An unauthenticated, adjacent attacker can cause an…
CVE-2019-12265 — CVSS 5.3 (medium): Wind River VxWorks 6.5, 6.6, 6.7, 6.8, 6.9.3 and 6.9.4 has a Memory Leak in the IGMPv3 client component. There is an IPNET security…