MidnightBSD

Advisories for belden

CVE-2016-2509 LOW

The password-sync feature on Belden Hirschmann Classic Platform switches L2B before 05.3.07 and L2E, L2P, L3E, and L3P before 09.0.06 sets an SNMP community to the same string as the administrator password, which allows remote attackers to obtain sensitive information by sniffing the network.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
belden hirschmann_l2b -
belden hirschmann_firmware *
belden hirschmann_firmware 05.3.06
CVE-2017-11400 HIGH

An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. An incomplete firmware signature allows a local attacker to upgrade the equipment (kernel, file system) with unsigned, attacker-controlled, data. This occurs because the appliance_config file is signed but the .tar.sec file is unsigned.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-347,

Products Affected

Vendor Product Version
belden tofino_xenon_security_appliance_firmware *
CVE-2017-11401 HIGH

An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. Improper handling of the mbap.length field of ModBus packets in the ModBus DPI filter allows an attacker to send malformed/crafted packets to a protected asset, bypassing function code filtering.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
belden tofino_xenon_security_appliance_firmware *
CVE-2017-11402 HIGH

An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. Design flaws in OPC classic and in custom netfilter modules allow an attacker to remotely activate rules on the firewall and to connect to any TCP port of a protected asset, thus bypassing the firewall. The attack methodology is a crafted OPC dynamic port shift.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
belden tofino_xenon_security_appliance_firmware *
CVE-2018-5461 MEDIUM

An Inadequate Encryption Strength issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. An inadequate encryption strength vulnerability in the web interface has been identified, which may allow an attacker to obtain sensitive information through a successful man-in-the-middle attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-326,CWE-326,

Products Affected

Vendor Product Version
belden hirschmann_mach104-16tx-poep_-r -
belden hirschmann_octopus_os20-000900t5t5tafbhh -
belden hirschmann_mach102-8tp-fr -
belden hirschmann_rsb20-0800m2m2saab -
belden hirschmann_mach104-20tx-fr -
belden hirschmann_octopus_16m -
belden hirschmann_rsb20-0800m2m2saabe -
belden hirschmann_mach4002-24g-l3p -
belden hirschmann_octopus_os20-0010001m1mtrephh -
belden hirschmann_rsb20-0900mmm2saabe -
belden hirschmann_rsb20-0900mmm2taabe -
belden hirschmann_octopus_os30-0008021a1atrephh -
belden hirschmann_mach104-16tx-poep_+2x_-r -
belden hirschmann_rsb20-0800t1t1saabe -
belden hirschmann_mach4002-48g+3x-l3p -
belden hirschmann_rs20-1600m2m2sdau -
belden hirschmann_ms20-1600saap -
belden hirschmann_rsb20-0900zzz6taab -
belden hirschmann_mach104-20tx-f-l3p -
belden hirschmann_rsb20-0800s2s2taab -
belden hirschmann_rsb20-0900vvm2taab -
belden hirschmann_rsb20-0900s2ttsaabe -
belden hirschmann_rsb20-0900m2tttaabe -
belden hirschmann_octopus_os20-001000t5t5tneuhb -
belden hirschmann_mach104-16tx-poep_-e -
belden hirschmann_octopus_24m-8_poe -
belden hirschmann_m1-8sm-sc -
belden hirschmann_mach4002-24g+3x-l2p -
belden hirschmann_rsb20-0900zzz6saabe -
belden hirschmann_octopus_os3x-xx24xxx -
belden hirschmann_rsb20-0900m2ttsaabe -
belden hirschmann_rs20-1600s2s2sdau -
belden hirschmann_mach4002-48g-l2p -
belden hirschmann_octopus_os20-001000t5t5tafuhb -
belden hirschmann_octopus_os32-080802t6t6tpephh -
belden hirschmann_mach4002-48g-l3e -
belden hirschmann_mach104-16tx-poep_-e-l3p -
belden hirschmann_rsb20-0900s2tttaab -
belden hirschmann_octopus_os20-0010004m4mtrephh -
belden hirschmann_m1-8mm-sc -
belden hirschmann_ms20-0800saae -
belden hirschmann_octopus_os20-0010001s1strephh -
belden hirschmann_octopus_16m-8poe -
belden hirschmann_rsb20-0800m2m2taab -
belden hirschmann_rsb20-0900zzz6taabe -
belden hirschmann_octopus_8m-train-bp -
belden hirschmann_rsb20-0900s2ttsaab -
belden hirschmann_mach104-16tx-poep -
belden hirschmann_ms20-0800saap -
belden hirschmann_octopus_os24-081000t5t5tffuhb -
belden hirschmann_mach102-8tp-r -
belden hirschmann_octopus_os30-0008024a4atrephh -
belden hirschmann_octopus_os34 -
belden hirschmann_octopus_8m-8poe -
belden hirschmann_mach104-16tx-poep-l3p -
belden hirschmann_ms30-0802saap -
belden hirschmann_octopus_8m -
belden hirschmann_octopus_os24-080900t5t5tffbhh -
belden hirschmann_rs20-0900nnm4tdau -
belden hirschmann_mach102-24tp-f -
belden hirschmann_octopus_5tx_eec -
belden hirschmann_mach4002-24g-l3e -
belden hirschmann_octopus_os24-081000t5t5tneuhb -
belden hirschmann_octopus_os3x-xx16xxx -
belden hirschmann_mach102-24tp-fr -
belden hirschmann_rs20-1600l2s2sdau -
belden hirschmann_mach4002-48g+3x-l3e -
belden hirschmann_mach104-16tx-poep_+2x-l3p -
belden hirschmann_octopus_24m-train -
belden hirschmann_octopus_16m-train-bp -
belden hirschmann_octopus_8m-train -
belden hirschmann_ms20-1600saae -
belden hirschmann_mach102-8tp -
belden hirschmann_rsb20-0900vvm2taabe -
belden hirschmann_rsr30 -
belden hirschmann_rsb20-0900vvm2saab -
belden hirschmann_rsb20-0800t1t1taab -
belden hirschmann_rs20-1600l2l2sdau -
belden hirschmann_ms30-0802saae -
belden hirschmann_rsb20-0900vvm2saabe -
belden hirschmann_m1-8sfp -
belden hirschmann_rsb20-0800s2s2saab -
belden hirschmann_octopus_16m-train -
belden hirschmann_m1-8tp-rj45 -
belden hirschmann_octopus_8tx-eec -
belden hirschmann_rsr20 -
belden hirschmann_mach4002-48g+3x-l2p -
belden hirschmann_rsb20-0800s2s2taabe -
belden hirschmann_mach104-16tx-poep_+2x_-r-l3p -
belden hirschmann_mach104-16tx-poep_+2x_-e-l3p -
belden hirschmann_octopus_os30 -
belden hirschmann_rsb20-0900m2ttsaab -
belden hirschmann_mach104-20tx-f-4poe -
belden hirschmann_rsb20-0800t1t1taabe -
belden hirschmann_octopus_os30-0008021b1btrephh -
belden hirschmann_rs20-0900mmm2tdau -
belden hirschmann_rsb20-0900mmm2taab -
belden hirschmann_rsb20-0900zzz6saab -
belden hirschmann_mach104-16tx-poep_+2x -
belden hirschmann_rsb20-0900m2tttaab -
belden hirschmann_rsb20-0900mmm2saab -
belden hirschmann_octopus_24m -
belden hirschmann_mach4002-48g-l3p -
belden hirschmann_octopus_os32-080802o6o6tpephh -
belden hirschmann_octopus_8tx_poe-eec -
belden hirschmann_rsb20-0800t1t1saab -
belden hirschmann_mach104-16tx-poep_+2x_-e -
belden hirschmann_octopus_24m-train-bp -
belden hirschmann_rs20-1600l2m2sdau -
belden hirschmann_octopus_8m-6poe -
belden hirschmann_octopus_os32-081602t6t6tpephh -
belden hirschmann_ms30-1602saae -
belden hirschmann_rsb20-0800m2m2taabe -
belden hirschmann_mach104-20tx-f -
belden hirschmann_mach104-20tx-fr-l3p -
belden hirschmann_rs20-1600l2t1sdau -
belden hirschmann_rsb20-0900s2tttaabe -
belden hirschmann_mach4002-24g-l2p -
belden hirschmann_octopus_os20-0010004s4strephh -
belden hirschmann_rs20-1600m2t1sdau -
belden hirschmann_ms20-0800eccp -
belden hirschmann_octopus_os24-080900t5t5tnebhh -
belden hirschmann_mach102-8tp-f -
belden hirschmann_rs20-0900vvm2tdau -
belden hirschmann_rs20-1600s2t1sdau -
belden hirschmann_mach4002-24g+3x-l3p -
belden hirschmann_mach104-16tx-poep_-r-l3p -
belden hirschmann_octopus_os20-000900t5t5tnebhh -
belden hirschmann_mach4002-24g+3x-l3e -
belden hirschmann_ms20-1600eccp -
belden hirschmann_rs20-1600s2m2sdau -
belden hirschmann_octopus_os32-081602o6o6tpephh -
belden hirschmann_rsb20-0800s2s2saabe -
belden hirschmann_octopus_os30-0008024b4btrephh -
CVE-2018-5465 MEDIUM

A Session Fixation issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. A session fixation vulnerability in the web interface has been identified, which may allow an attacker to hijack web sessions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,CWE-384,

Products Affected

Vendor Product Version
belden hirschmann_mach104-16tx-poep_-r -
belden hirschmann_octopus_os20-000900t5t5tafbhh -
belden hirschmann_mach102-8tp-fr -
belden hirschmann_rsb20-0800m2m2saab -
belden hirschmann_mach104-20tx-fr -
belden hirschmann_octopus_16m -
belden hirschmann_rsb20-0800m2m2saabe -
belden hirschmann_mach4002-24g-l3p -
belden hirschmann_octopus_os20-0010001m1mtrephh -
belden hirschmann_rsb20-0900mmm2saabe -
belden hirschmann_rsb20-0900mmm2taabe -
belden hirschmann_octopus_os30-0008021a1atrephh -
belden hirschmann_mach104-16tx-poep_+2x_-r -
belden hirschmann_rsb20-0800t1t1saabe -
belden hirschmann_mach4002-48g+3x-l3p -
belden hirschmann_rs20-1600m2m2sdau -
belden hirschmann_ms20-1600saap -
belden hirschmann_rsb20-0900zzz6taab -
belden hirschmann_mach104-20tx-f-l3p -
belden hirschmann_rsb20-0800s2s2taab -
belden hirschmann_rsb20-0900vvm2taab -
belden hirschmann_rsb20-0900s2ttsaabe -
belden hirschmann_rsb20-0900m2tttaabe -
belden hirschmann_octopus_os20-001000t5t5tneuhb -
belden hirschmann_mach104-16tx-poep_-e -
belden hirschmann_octopus_24m-8_poe -
belden hirschmann_m1-8sm-sc -
belden hirschmann_mach4002-24g+3x-l2p -
belden hirschmann_rsb20-0900zzz6saabe -
belden hirschmann_octopus_os3x-xx24xxx -
belden hirschmann_rsb20-0900m2ttsaabe -
belden hirschmann_rs20-1600s2s2sdau -
belden hirschmann_mach4002-48g-l2p -
belden hirschmann_octopus_os20-001000t5t5tafuhb -
belden hirschmann_octopus_os32-080802t6t6tpephh -
belden hirschmann_mach4002-48g-l3e -
belden hirschmann_mach104-16tx-poep_-e-l3p -
belden hirschmann_rsb20-0900s2tttaab -
belden hirschmann_octopus_os20-0010004m4mtrephh -
belden hirschmann_m1-8mm-sc -
belden hirschmann_ms20-0800saae -
belden hirschmann_octopus_os20-0010001s1strephh -
belden hirschmann_octopus_16m-8poe -
belden hirschmann_rsb20-0800m2m2taab -
belden hirschmann_rsb20-0900zzz6taabe -
belden hirschmann_octopus_8m-train-bp -
belden hirschmann_rsb20-0900s2ttsaab -
belden hirschmann_mach104-16tx-poep -
belden hirschmann_ms20-0800saap -
belden hirschmann_octopus_os24-081000t5t5tffuhb -
belden hirschmann_mach102-8tp-r -
belden hirschmann_octopus_os30-0008024a4atrephh -
belden hirschmann_octopus_os34 -
belden hirschmann_octopus_8m-8poe -
belden hirschmann_mach104-16tx-poep-l3p -
belden hirschmann_ms30-0802saap -
belden hirschmann_octopus_8m -
belden hirschmann_octopus_os24-080900t5t5tffbhh -
belden hirschmann_rs20-0900nnm4tdau -
belden hirschmann_mach102-24tp-f -
belden hirschmann_octopus_5tx_eec -
belden hirschmann_mach4002-24g-l3e -
belden hirschmann_octopus_os24-081000t5t5tneuhb -
belden hirschmann_octopus_os3x-xx16xxx -
belden hirschmann_mach102-24tp-fr -
belden hirschmann_rs20-1600l2s2sdau -
belden hirschmann_mach4002-48g+3x-l3e -
belden hirschmann_mach104-16tx-poep_+2x-l3p -
belden hirschmann_octopus_24m-train -
belden hirschmann_octopus_16m-train-bp -
belden hirschmann_octopus_8m-train -
belden hirschmann_ms20-1600saae -
belden hirschmann_mach102-8tp -
belden hirschmann_rsb20-0900vvm2taabe -
belden hirschmann_rsr30 -
belden hirschmann_rsb20-0900vvm2saab -
belden hirschmann_rsb20-0800t1t1taab -
belden hirschmann_rs20-1600l2l2sdau -
belden hirschmann_ms30-0802saae -
belden hirschmann_rsb20-0900vvm2saabe -
belden hirschmann_m1-8sfp -
belden hirschmann_rsb20-0800s2s2saab -
belden hirschmann_octopus_16m-train -
belden hirschmann_m1-8tp-rj45 -
belden hirschmann_octopus_8tx-eec -
belden hirschmann_rsr20 -
belden hirschmann_mach4002-48g+3x-l2p -
belden hirschmann_rsb20-0800s2s2taabe -
belden hirschmann_mach104-16tx-poep_+2x_-r-l3p -
belden hirschmann_mach104-16tx-poep_+2x_-e-l3p -
belden hirschmann_octopus_os30 -
belden hirschmann_rsb20-0900m2ttsaab -
belden hirschmann_mach104-20tx-f-4poe -
belden hirschmann_rsb20-0800t1t1taabe -
belden hirschmann_octopus_os30-0008021b1btrephh -
belden hirschmann_rs20-0900mmm2tdau -
belden hirschmann_rsb20-0900mmm2taab -
belden hirschmann_rsb20-0900zzz6saab -
belden hirschmann_mach104-16tx-poep_+2x -
belden hirschmann_rsb20-0900m2tttaab -
belden hirschmann_rsb20-0900mmm2saab -
belden hirschmann_octopus_24m -
belden hirschmann_mach4002-48g-l3p -
belden hirschmann_octopus_os32-080802o6o6tpephh -
belden hirschmann_octopus_8tx_poe-eec -
belden hirschmann_rsb20-0800t1t1saab -
belden hirschmann_mach104-16tx-poep_+2x_-e -
belden hirschmann_octopus_24m-train-bp -
belden hirschmann_rs20-1600l2m2sdau -
belden hirschmann_octopus_8m-6poe -
belden hirschmann_octopus_os32-081602t6t6tpephh -
belden hirschmann_ms30-1602saae -
belden hirschmann_rsb20-0800m2m2taabe -
belden hirschmann_mach104-20tx-f -
belden hirschmann_mach104-20tx-fr-l3p -
belden hirschmann_rs20-1600l2t1sdau -
belden hirschmann_rsb20-0900s2tttaabe -
belden hirschmann_mach4002-24g-l2p -
belden hirschmann_octopus_os20-0010004s4strephh -
belden hirschmann_rs20-1600m2t1sdau -
belden hirschmann_ms20-0800eccp -
belden hirschmann_octopus_os24-080900t5t5tnebhh -
belden hirschmann_mach102-8tp-f -
belden hirschmann_rs20-0900vvm2tdau -
belden hirschmann_rs20-1600s2t1sdau -
belden hirschmann_mach4002-24g+3x-l3p -
belden hirschmann_mach104-16tx-poep_-r-l3p -
belden hirschmann_octopus_os20-000900t5t5tnebhh -
belden hirschmann_mach4002-24g+3x-l3e -
belden hirschmann_ms20-1600eccp -
belden hirschmann_rs20-1600s2m2sdau -
belden hirschmann_octopus_os32-081602o6o6tpephh -
belden hirschmann_rsb20-0800s2s2saabe -
belden hirschmann_octopus_os30-0008024b4btrephh -
CVE-2018-5467 MEDIUM

An Information Exposure Through Query Strings in GET Request issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. An information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-598,CWE-200,

Products Affected

Vendor Product Version
belden hirschmann_mach104-16tx-poep_-r -
belden hirschmann_octopus_os20-000900t5t5tafbhh -
belden hirschmann_mach102-8tp-fr -
belden hirschmann_rsb20-0800m2m2saab -
belden hirschmann_mach104-20tx-fr -
belden hirschmann_octopus_16m -
belden hirschmann_rsb20-0800m2m2saabe -
belden hirschmann_mach4002-24g-l3p -
belden hirschmann_octopus_os20-0010001m1mtrephh -
belden hirschmann_rsb20-0900mmm2saabe -
belden hirschmann_rsb20-0900mmm2taabe -
belden hirschmann_octopus_os30-0008021a1atrephh -
belden hirschmann_mach104-16tx-poep_+2x_-r -
belden hirschmann_rsb20-0800t1t1saabe -
belden hirschmann_mach4002-48g+3x-l3p -
belden hirschmann_rs20-1600m2m2sdau -
belden hirschmann_ms20-1600saap -
belden hirschmann_rsb20-0900zzz6taab -
belden hirschmann_mach104-20tx-f-l3p -
belden hirschmann_rsb20-0800s2s2taab -
belden hirschmann_rsb20-0900vvm2taab -
belden hirschmann_rsb20-0900s2ttsaabe -
belden hirschmann_rsb20-0900m2tttaabe -
belden hirschmann_octopus_os20-001000t5t5tneuhb -
belden hirschmann_mach104-16tx-poep_-e -
belden hirschmann_octopus_24m-8_poe -
belden hirschmann_m1-8sm-sc -
belden hirschmann_mach4002-24g+3x-l2p -
belden hirschmann_rsb20-0900zzz6saabe -
belden hirschmann_octopus_os3x-xx24xxx -
belden hirschmann_rsb20-0900m2ttsaabe -
belden hirschmann_rs20-1600s2s2sdau -
belden hirschmann_mach4002-48g-l2p -
belden hirschmann_octopus_os20-001000t5t5tafuhb -
belden hirschmann_octopus_os32-080802t6t6tpephh -
belden hirschmann_mach4002-48g-l3e -
belden hirschmann_mach104-16tx-poep_-e-l3p -
belden hirschmann_rsb20-0900s2tttaab -
belden hirschmann_octopus_os20-0010004m4mtrephh -
belden hirschmann_m1-8mm-sc -
belden hirschmann_ms20-0800saae -
belden hirschmann_octopus_os20-0010001s1strephh -
belden hirschmann_octopus_16m-8poe -
belden hirschmann_rsb20-0800m2m2taab -
belden hirschmann_rsb20-0900zzz6taabe -
belden hirschmann_octopus_8m-train-bp -
belden hirschmann_rsb20-0900s2ttsaab -
belden hirschmann_mach104-16tx-poep -
belden hirschmann_ms20-0800saap -
belden hirschmann_octopus_os24-081000t5t5tffuhb -
belden hirschmann_mach102-8tp-r -
belden hirschmann_octopus_os30-0008024a4atrephh -
belden hirschmann_octopus_os34 -
belden hirschmann_octopus_8m-8poe -
belden hirschmann_mach104-16tx-poep-l3p -
belden hirschmann_ms30-0802saap -
belden hirschmann_octopus_8m -
belden hirschmann_octopus_os24-080900t5t5tffbhh -
belden hirschmann_rs20-0900nnm4tdau -
belden hirschmann_mach102-24tp-f -
belden hirschmann_octopus_5tx_eec -
belden hirschmann_mach4002-24g-l3e -
belden hirschmann_octopus_os24-081000t5t5tneuhb -
belden hirschmann_octopus_os3x-xx16xxx -
belden hirschmann_mach102-24tp-fr -
belden hirschmann_rs20-1600l2s2sdau -
belden hirschmann_mach4002-48g+3x-l3e -
belden hirschmann_mach104-16tx-poep_+2x-l3p -
belden hirschmann_octopus_24m-train -
belden hirschmann_octopus_16m-train-bp -
belden hirschmann_octopus_8m-train -
belden hirschmann_ms20-1600saae -
belden hirschmann_mach102-8tp -
belden hirschmann_rsb20-0900vvm2taabe -
belden hirschmann_rsr30 -
belden hirschmann_rsb20-0900vvm2saab -
belden hirschmann_rsb20-0800t1t1taab -
belden hirschmann_rs20-1600l2l2sdau -
belden hirschmann_ms30-0802saae -
belden hirschmann_rsb20-0900vvm2saabe -
belden hirschmann_m1-8sfp -
belden hirschmann_rsb20-0800s2s2saab -
belden hirschmann_octopus_16m-train -
belden hirschmann_m1-8tp-rj45 -
belden hirschmann_octopus_8tx-eec -
belden hirschmann_rsr20 -
belden hirschmann_mach4002-48g+3x-l2p -
belden hirschmann_rsb20-0800s2s2taabe -
belden hirschmann_mach104-16tx-poep_+2x_-r-l3p -
belden hirschmann_mach104-16tx-poep_+2x_-e-l3p -
belden hirschmann_octopus_os30 -
belden hirschmann_rsb20-0900m2ttsaab -
belden hirschmann_mach104-20tx-f-4poe -
belden hirschmann_rsb20-0800t1t1taabe -
belden hirschmann_octopus_os30-0008021b1btrephh -
belden hirschmann_rs20-0900mmm2tdau -
belden hirschmann_rsb20-0900mmm2taab -
belden hirschmann_rsb20-0900zzz6saab -
belden hirschmann_mach104-16tx-poep_+2x -
belden hirschmann_rsb20-0900m2tttaab -
belden hirschmann_rsb20-0900mmm2saab -
belden hirschmann_octopus_24m -
belden hirschmann_mach4002-48g-l3p -
belden hirschmann_octopus_os32-080802o6o6tpephh -
belden hirschmann_octopus_8tx_poe-eec -
belden hirschmann_rsb20-0800t1t1saab -
belden hirschmann_mach104-16tx-poep_+2x_-e -
belden hirschmann_octopus_24m-train-bp -
belden hirschmann_rs20-1600l2m2sdau -
belden hirschmann_octopus_8m-6poe -
belden hirschmann_octopus_os32-081602t6t6tpephh -
belden hirschmann_ms30-1602saae -
belden hirschmann_rsb20-0800m2m2taabe -
belden hirschmann_mach104-20tx-f -
belden hirschmann_mach104-20tx-fr-l3p -
belden hirschmann_rs20-1600l2t1sdau -
belden hirschmann_rsb20-0900s2tttaabe -
belden hirschmann_mach4002-24g-l2p -
belden hirschmann_octopus_os20-0010004s4strephh -
belden hirschmann_rs20-1600m2t1sdau -
belden hirschmann_ms20-0800eccp -
belden hirschmann_octopus_os24-080900t5t5tnebhh -
belden hirschmann_mach102-8tp-f -
belden hirschmann_rs20-0900vvm2tdau -
belden hirschmann_rs20-1600s2t1sdau -
belden hirschmann_mach4002-24g+3x-l3p -
belden hirschmann_mach104-16tx-poep_-r-l3p -
belden hirschmann_octopus_os20-000900t5t5tnebhh -
belden hirschmann_mach4002-24g+3x-l3e -
belden hirschmann_ms20-1600eccp -
belden hirschmann_rs20-1600s2m2sdau -
belden hirschmann_octopus_os32-081602o6o6tpephh -
belden hirschmann_rsb20-0800s2s2saabe -
belden hirschmann_octopus_os30-0008024b4btrephh -
CVE-2018-5469 HIGH

An Improper Restriction of Excessive Authentication Attempts issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. An improper restriction of excessive authentication vulnerability in the web interface has been identified, which may allow an attacker to brute force authentication.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-307,CWE-307,

Products Affected

Vendor Product Version
belden hirschmann_mach104-16tx-poep_-r -
belden hirschmann_octopus_os20-000900t5t5tafbhh -
belden hirschmann_mach102-8tp-fr -
belden hirschmann_rsb20-0800m2m2saab -
belden hirschmann_mach104-20tx-fr -
belden hirschmann_octopus_16m -
belden hirschmann_rsb20-0800m2m2saabe -
belden hirschmann_mach4002-24g-l3p -
belden hirschmann_octopus_os20-0010001m1mtrephh -
belden hirschmann_rsb20-0900mmm2saabe -
belden hirschmann_rsb20-0900mmm2taabe -
belden hirschmann_octopus_os30-0008021a1atrephh -
belden hirschmann_mach104-16tx-poep_+2x_-r -
belden hirschmann_rsb20-0800t1t1saabe -
belden hirschmann_mach4002-48g+3x-l3p -
belden hirschmann_rs20-1600m2m2sdau -
belden hirschmann_ms20-1600saap -
belden hirschmann_rsb20-0900zzz6taab -
belden hirschmann_mach104-20tx-f-l3p -
belden hirschmann_rsb20-0800s2s2taab -
belden hirschmann_rsb20-0900vvm2taab -
belden hirschmann_rsb20-0900s2ttsaabe -
belden hirschmann_rsb20-0900m2tttaabe -
belden hirschmann_octopus_os20-001000t5t5tneuhb -
belden hirschmann_mach104-16tx-poep_-e -
belden hirschmann_octopus_24m-8_poe -
belden hirschmann_m1-8sm-sc -
belden hirschmann_mach4002-24g+3x-l2p -
belden hirschmann_rsb20-0900zzz6saabe -
belden hirschmann_octopus_os3x-xx24xxx -
belden hirschmann_rsb20-0900m2ttsaabe -
belden hirschmann_rs20-1600s2s2sdau -
belden hirschmann_mach4002-48g-l2p -
belden hirschmann_octopus_os20-001000t5t5tafuhb -
belden hirschmann_octopus_os32-080802t6t6tpephh -
belden hirschmann_mach4002-48g-l3e -
belden hirschmann_mach104-16tx-poep_-e-l3p -
belden hirschmann_rsb20-0900s2tttaab -
belden hirschmann_octopus_os20-0010004m4mtrephh -
belden hirschmann_m1-8mm-sc -
belden hirschmann_ms20-0800saae -
belden hirschmann_octopus_os20-0010001s1strephh -
belden hirschmann_octopus_16m-8poe -
belden hirschmann_rsb20-0800m2m2taab -
belden hirschmann_rsb20-0900zzz6taabe -
belden hirschmann_octopus_8m-train-bp -
belden hirschmann_rsb20-0900s2ttsaab -
belden hirschmann_mach104-16tx-poep -
belden hirschmann_ms20-0800saap -
belden hirschmann_octopus_os24-081000t5t5tffuhb -
belden hirschmann_mach102-8tp-r -
belden hirschmann_octopus_os30-0008024a4atrephh -
belden hirschmann_octopus_os34 -
belden hirschmann_octopus_8m-8poe -
belden hirschmann_mach104-16tx-poep-l3p -
belden hirschmann_ms30-0802saap -
belden hirschmann_octopus_8m -
belden hirschmann_octopus_os24-080900t5t5tffbhh -
belden hirschmann_rs20-0900nnm4tdau -
belden hirschmann_mach102-24tp-f -
belden hirschmann_octopus_5tx_eec -
belden hirschmann_mach4002-24g-l3e -
belden hirschmann_octopus_os24-081000t5t5tneuhb -
belden hirschmann_octopus_os3x-xx16xxx -
belden hirschmann_mach102-24tp-fr -
belden hirschmann_rs20-1600l2s2sdau -
belden hirschmann_mach4002-48g+3x-l3e -
belden hirschmann_mach104-16tx-poep_+2x-l3p -
belden hirschmann_octopus_24m-train -
belden hirschmann_octopus_16m-train-bp -
belden hirschmann_octopus_8m-train -
belden hirschmann_ms20-1600saae -
belden hirschmann_mach102-8tp -
belden hirschmann_rsb20-0900vvm2taabe -
belden hirschmann_rsr30 -
belden hirschmann_rsb20-0900vvm2saab -
belden hirschmann_rsb20-0800t1t1taab -
belden hirschmann_rs20-1600l2l2sdau -
belden hirschmann_ms30-0802saae -
belden hirschmann_rsb20-0900vvm2saabe -
belden hirschmann_m1-8sfp -
belden hirschmann_rsb20-0800s2s2saab -
belden hirschmann_octopus_16m-train -
belden hirschmann_m1-8tp-rj45 -
belden hirschmann_octopus_8tx-eec -
belden hirschmann_rsr20 -
belden hirschmann_mach4002-48g+3x-l2p -
belden hirschmann_rsb20-0800s2s2taabe -
belden hirschmann_mach104-16tx-poep_+2x_-r-l3p -
belden hirschmann_mach104-16tx-poep_+2x_-e-l3p -
belden hirschmann_octopus_os30 -
belden hirschmann_rsb20-0900m2ttsaab -
belden hirschmann_mach104-20tx-f-4poe -
belden hirschmann_rsb20-0800t1t1taabe -
belden hirschmann_octopus_os30-0008021b1btrephh -
belden hirschmann_rs20-0900mmm2tdau -
belden hirschmann_rsb20-0900mmm2taab -
belden hirschmann_rsb20-0900zzz6saab -
belden hirschmann_mach104-16tx-poep_+2x -
belden hirschmann_rsb20-0900m2tttaab -
belden hirschmann_rsb20-0900mmm2saab -
belden hirschmann_octopus_24m -
belden hirschmann_mach4002-48g-l3p -
belden hirschmann_octopus_os32-080802o6o6tpephh -
belden hirschmann_octopus_8tx_poe-eec -
belden hirschmann_rsb20-0800t1t1saab -
belden hirschmann_mach104-16tx-poep_+2x_-e -
belden hirschmann_octopus_24m-train-bp -
belden hirschmann_rs20-1600l2m2sdau -
belden hirschmann_octopus_8m-6poe -
belden hirschmann_octopus_os32-081602t6t6tpephh -
belden hirschmann_ms30-1602saae -
belden hirschmann_rsb20-0800m2m2taabe -
belden hirschmann_mach104-20tx-f -
belden hirschmann_mach104-20tx-fr-l3p -
belden hirschmann_rs20-1600l2t1sdau -
belden hirschmann_rsb20-0900s2tttaabe -
belden hirschmann_mach4002-24g-l2p -
belden hirschmann_octopus_os20-0010004s4strephh -
belden hirschmann_rs20-1600m2t1sdau -
belden hirschmann_ms20-0800eccp -
belden hirschmann_octopus_os24-080900t5t5tnebhh -
belden hirschmann_mach102-8tp-f -
belden hirschmann_rs20-0900vvm2tdau -
belden hirschmann_rs20-1600s2t1sdau -
belden hirschmann_mach4002-24g+3x-l3p -
belden hirschmann_mach104-16tx-poep_-r-l3p -
belden hirschmann_octopus_os20-000900t5t5tnebhh -
belden hirschmann_mach4002-24g+3x-l3e -
belden hirschmann_ms20-1600eccp -
belden hirschmann_rs20-1600s2m2sdau -
belden hirschmann_octopus_os32-081602o6o6tpephh -
belden hirschmann_rsb20-0800s2s2saabe -
belden hirschmann_octopus_os30-0008024b4btrephh -
CVE-2018-5471 MEDIUM

A Cleartext Transmission of Sensitive Information issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. A cleartext transmission of sensitive information vulnerability in the web interface has been identified, which may allow an attacker to obtain sensitive information through a successful man-in-the-middle attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-319,CWE-319,

Products Affected

Vendor Product Version
belden hirschmann_mach104-16tx-poep_-r -
belden hirschmann_octopus_os20-000900t5t5tafbhh -
belden hirschmann_mach102-8tp-fr -
belden hirschmann_rsb20-0800m2m2saab -
belden hirschmann_mach104-20tx-fr -
belden hirschmann_octopus_16m -
belden hirschmann_rsb20-0800m2m2saabe -
belden hirschmann_mach4002-24g-l3p -
belden hirschmann_octopus_os20-0010001m1mtrephh -
belden hirschmann_rsb20-0900mmm2saabe -
belden hirschmann_rsb20-0900mmm2taabe -
belden hirschmann_octopus_os30-0008021a1atrephh -
belden hirschmann_mach104-16tx-poep_+2x_-r -
belden hirschmann_rsb20-0800t1t1saabe -
belden hirschmann_mach4002-48g+3x-l3p -
belden hirschmann_rs20-1600m2m2sdau -
belden hirschmann_ms20-1600saap -
belden hirschmann_rsb20-0900zzz6taab -
belden hirschmann_mach104-20tx-f-l3p -
belden hirschmann_rsb20-0800s2s2taab -
belden hirschmann_rsb20-0900vvm2taab -
belden hirschmann_rsb20-0900s2ttsaabe -
belden hirschmann_rsb20-0900m2tttaabe -
belden hirschmann_octopus_os20-001000t5t5tneuhb -
belden hirschmann_mach104-16tx-poep_-e -
belden hirschmann_octopus_24m-8_poe -
belden hirschmann_m1-8sm-sc -
belden hirschmann_mach4002-24g+3x-l2p -
belden hirschmann_rsb20-0900zzz6saabe -
belden hirschmann_octopus_os3x-xx24xxx -
belden hirschmann_rsb20-0900m2ttsaabe -
belden hirschmann_rs20-1600s2s2sdau -
belden hirschmann_mach4002-48g-l2p -
belden hirschmann_octopus_os20-001000t5t5tafuhb -
belden hirschmann_octopus_os32-080802t6t6tpephh -
belden hirschmann_mach4002-48g-l3e -
belden hirschmann_mach104-16tx-poep_-e-l3p -
belden hirschmann_rsb20-0900s2tttaab -
belden hirschmann_octopus_os20-0010004m4mtrephh -
belden hirschmann_m1-8mm-sc -
belden hirschmann_ms20-0800saae -
belden hirschmann_octopus_os20-0010001s1strephh -
belden hirschmann_octopus_16m-8poe -
belden hirschmann_rsb20-0800m2m2taab -
belden hirschmann_rsb20-0900zzz6taabe -
belden hirschmann_octopus_8m-train-bp -
belden hirschmann_rsb20-0900s2ttsaab -
belden hirschmann_mach104-16tx-poep -
belden hirschmann_ms20-0800saap -
belden hirschmann_octopus_os24-081000t5t5tffuhb -
belden hirschmann_mach102-8tp-r -
belden hirschmann_octopus_os30-0008024a4atrephh -
belden hirschmann_octopus_os34 -
belden hirschmann_octopus_8m-8poe -
belden hirschmann_mach104-16tx-poep-l3p -
belden hirschmann_ms30-0802saap -
belden hirschmann_octopus_8m -
belden hirschmann_octopus_os24-080900t5t5tffbhh -
belden hirschmann_rs20-0900nnm4tdau -
belden hirschmann_mach102-24tp-f -
belden hirschmann_octopus_5tx_eec -
belden hirschmann_mach4002-24g-l3e -
belden hirschmann_octopus_os24-081000t5t5tneuhb -
belden hirschmann_octopus_os3x-xx16xxx -
belden hirschmann_mach102-24tp-fr -
belden hirschmann_rs20-1600l2s2sdau -
belden hirschmann_mach4002-48g+3x-l3e -
belden hirschmann_mach104-16tx-poep_+2x-l3p -
belden hirschmann_octopus_24m-train -
belden hirschmann_octopus_16m-train-bp -
belden hirschmann_octopus_8m-train -
belden hirschmann_ms20-1600saae -
belden hirschmann_mach102-8tp -
belden hirschmann_rsb20-0900vvm2taabe -
belden hirschmann_rsr30 -
belden hirschmann_rsb20-0900vvm2saab -
belden hirschmann_rsb20-0800t1t1taab -
belden hirschmann_rs20-1600l2l2sdau -
belden hirschmann_ms30-0802saae -
belden hirschmann_rsb20-0900vvm2saabe -
belden hirschmann_m1-8sfp -
belden hirschmann_rsb20-0800s2s2saab -
belden hirschmann_octopus_16m-train -
belden hirschmann_m1-8tp-rj45 -
belden hirschmann_octopus_8tx-eec -
belden hirschmann_rsr20 -
belden hirschmann_mach4002-48g+3x-l2p -
belden hirschmann_rsb20-0800s2s2taabe -
belden hirschmann_mach104-16tx-poep_+2x_-r-l3p -
belden hirschmann_mach104-16tx-poep_+2x_-e-l3p -
belden hirschmann_octopus_os30 -
belden hirschmann_rsb20-0900m2ttsaab -
belden hirschmann_mach104-20tx-f-4poe -
belden hirschmann_rsb20-0800t1t1taabe -
belden hirschmann_octopus_os30-0008021b1btrephh -
belden hirschmann_rs20-0900mmm2tdau -
belden hirschmann_rsb20-0900mmm2taab -
belden hirschmann_rsb20-0900zzz6saab -
belden hirschmann_mach104-16tx-poep_+2x -
belden hirschmann_rsb20-0900m2tttaab -
belden hirschmann_rsb20-0900mmm2saab -
belden hirschmann_octopus_24m -
belden hirschmann_mach4002-48g-l3p -
belden hirschmann_octopus_os32-080802o6o6tpephh -
belden hirschmann_octopus_8tx_poe-eec -
belden hirschmann_rsb20-0800t1t1saab -
belden hirschmann_mach104-16tx-poep_+2x_-e -
belden hirschmann_octopus_24m-train-bp -
belden hirschmann_rs20-1600l2m2sdau -
belden hirschmann_octopus_8m-6poe -
belden hirschmann_octopus_os32-081602t6t6tpephh -
belden hirschmann_ms30-1602saae -
belden hirschmann_rsb20-0800m2m2taabe -
belden hirschmann_mach104-20tx-f -
belden hirschmann_mach104-20tx-fr-l3p -
belden hirschmann_rs20-1600l2t1sdau -
belden hirschmann_rsb20-0900s2tttaabe -
belden hirschmann_mach4002-24g-l2p -
belden hirschmann_octopus_os20-0010004s4strephh -
belden hirschmann_rs20-1600m2t1sdau -
belden hirschmann_ms20-0800eccp -
belden hirschmann_octopus_os24-080900t5t5tnebhh -
belden hirschmann_mach102-8tp-f -
belden hirschmann_rs20-0900vvm2tdau -
belden hirschmann_rs20-1600s2t1sdau -
belden hirschmann_mach4002-24g+3x-l3p -
belden hirschmann_mach104-16tx-poep_-r-l3p -
belden hirschmann_octopus_os20-000900t5t5tnebhh -
belden hirschmann_mach4002-24g+3x-l3e -
belden hirschmann_ms20-1600eccp -
belden hirschmann_rs20-1600s2m2sdau -
belden hirschmann_octopus_os32-081602o6o6tpephh -
belden hirschmann_rsb20-0800s2s2saabe -
belden hirschmann_octopus_os30-0008024b4btrephh -
CVE-2019-12255 HIGH

Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
sonicwall sonicos *
siemens power_meter_9810_firmware *
windriver vxworks *
netapp e-series_santricity_os_controller *
sonicwall sonicos 6.2.7.7
siemens siprotec_5_firmware *
sonicwall sonicos 6.2.7.0
siemens power_meter_9410_firmware *
siemens ruggedcom_win7200_firmware *
siemens ruggedcom_win7000_firmware *
sonicwall sonicos 6.2.7.1
belden hirschmann_hios *
belden garrettcom_magnum_dx940e_firmware *
CVE-2019-12256 HIGH

Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the IPv4 component. There is an IPNET security vulnerability: Stack overflow in the parsing of IPv4 packets’ IP options.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
sonicwall sonicos *
siemens power_meter_9810_firmware *
windriver vxworks *
netapp e-series_santricity_os_controller *
sonicwall sonicos 6.2.7.7
siemens siprotec_5_firmware *
sonicwall sonicos 6.2.7.0
siemens power_meter_9410_firmware *
siemens ruggedcom_win7200_firmware *
siemens ruggedcom_win7000_firmware *
sonicwall sonicos 6.2.7.1
belden hirschmann_hios *
belden garrettcom_magnum_dx940e_firmware *
CVE-2019-12257 MEDIUM

Wind River VxWorks 6.6 through 6.9 has a Buffer Overflow in the DHCP client component. There is an IPNET security vulnerability: Heap overflow in DHCP Offer/ACK parsing inside ipdhcpc.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
sonicwall sonicos *
windriver vxworks *
netapp e-series_santricity_os_controller *
sonicwall sonicos 6.2.7.7
siemens siprotec_5_firmware *
sonicwall sonicos 6.2.7.0
siemens ruggedcom_win7200_firmware *
siemens ruggedcom_win7000_firmware *
sonicwall sonicos 6.2.7.1
belden hirschmann_hios *
belden garrettcom_magnum_dx940e_firmware *
CVE-2019-12258 MEDIUM

Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection via malformed TCP options.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
sonicwall sonicos *
siemens power_meter_9810_firmware *
windriver vxworks *
netapp e-series_santricity_os_controller *
sonicwall sonicos 6.2.7.7
siemens siprotec_5_firmware *
sonicwall sonicos 6.2.7.0
siemens power_meter_9410_firmware *
siemens ruggedcom_win7200_firmware *
siemens ruggedcom_win7000_firmware *
sonicwall sonicos 6.2.7.1
belden hirschmann_hios *
windriver vxworks 7.0
belden garrettcom_magnum_dx940e_firmware *
CVE-2019-12259 MEDIUM

Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and vx7 has an array index error in the IGMPv3 client component. There is an IPNET security vulnerability: DoS via NULL dereference in IGMP parsing.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
sonicwall sonicos *
windriver vxworks *
sonicwall sonicos 6.2.7.7
siemens siprotec_5_firmware *
siemens 9410_power_meter_firmware *
sonicwall sonicos 6.2.7.0
siemens ruggedcom_win7200_firmware *
siemens 9810_power_meter_firmware *
siemens ruggedcom_win7000_firmware *
sonicwall sonicos 6.2.7.1
belden hirschmann_hios *
windriver vxworks 7.0
belden garrettcom_magnum_dx940e_firmware *
CVE-2019-12260 HIGH

Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 2 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion caused by a malformed TCP AO option.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
sonicwall sonicos *
oracle communications_eagle *
siemens power_meter_9810_firmware *
windriver vxworks *
netapp e-series_santricity_os_controller *
sonicwall sonicos 6.2.7.7
siemens siprotec_5_firmware *
sonicwall sonicos 6.2.7.0
siemens power_meter_9410_firmware *
siemens ruggedcom_win7200_firmware *
siemens ruggedcom_win7000_firmware *
sonicwall sonicos 6.2.7.1
belden hirschmann_hios *
windriver vxworks 7.0
belden garrettcom_magnum_dx940e_firmware *
CVE-2019-12261 HIGH

Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 3 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect() to a remote host.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
sonicwall sonicos *
oracle communications_eagle *
siemens power_meter_9810_firmware *
windriver vxworks *
netapp e-series_santricity_os_controller *
sonicwall sonicos 6.2.7.7
siemens siprotec_5_firmware *
sonicwall sonicos 6.2.7.0
siemens power_meter_9410_firmware *
siemens ruggedcom_win7200_firmware *
siemens ruggedcom_win7000_firmware *
sonicwall sonicos 6.2.7.1
belden hirschmann_hios *
windriver vxworks 7.0
belden garrettcom_magnum_dx940e_firmware *
CVE-2019-12262 HIGH

Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerability: Handling of unsolicited Reverse ARP replies (Logical Flaw).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
windriver vxworks 6.7
windriver vxworks 6.9
siemens ruggedcom_win7200_firmware *
windriver vxworks 6.8
siemens ruggedcom_win7000_firmware *
belden hirschmann_hios *
windriver vxworks 7.0
belden garrettcom_magnum_dx940e_firmware *
windriver vxworks 6.6
CVE-2019-12263 MEDIUM

Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,CWE-787,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
sonicwall sonicos *
siemens power_meter_9810_firmware *
windriver vxworks *
netapp e-series_santricity_os_controller *
sonicwall sonicos 6.2.7.7
siemens siprotec_5_firmware *
sonicwall sonicos 6.2.7.0
siemens power_meter_9410_firmware *
siemens ruggedcom_win7200_firmware *
siemens ruggedcom_win7000_firmware *
sonicwall sonicos 6.2.7.1
belden hirschmann_hios *
windriver vxworks 7.0
belden garrettcom_magnum_dx940e_firmware *
CVE-2019-12264 MEDIUM

Wind River VxWorks 6.6, 6.7, 6.8, 6.9.3, 6.9.4, and Vx7 has Incorrect Access Control in IPv4 assignment by the ipdhcpc DHCP client component.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H 2.8 4.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-88,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
windriver vxworks 6.8
windriver vxworks 6.6
windriver vxworks 6.7
windriver vxworks 6.9.4
siemens ruggedcom_win7200_firmware *
siemens ruggedcom_win7000_firmware *
belden hirschmann_hios *
windriver vxworks 7.0
belden garrettcom_magnum_dx940e_firmware *
windriver vxworks 6.9.3
CVE-2019-12265 MEDIUM

Wind River VxWorks 6.5, 6.6, 6.7, 6.8, 6.9.3 and 6.9.4 has a Memory Leak in the IGMPv3 client component. There is an IPNET security vulnerability: IGMP Information leak via IGMPv3 specific membership report.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
siemens ruggedcom_win7018_firmware *
siemens ruggedcom_win7025_firmware *
sonicwall sonicos *
siemens power_meter_9810_firmware *
windriver vxworks *
netapp e-series_santricity_os_controller *
sonicwall sonicos 6.2.7.7
siemens siprotec_5_firmware *
sonicwall sonicos 6.2.7.0
siemens power_meter_9410_firmware *
siemens ruggedcom_win7200_firmware *
siemens ruggedcom_win7000_firmware *
sonicwall sonicos 6.2.7.1
belden hirschmann_hios *
windriver vxworks 7.0
belden garrettcom_magnum_dx940e_firmware *
CVE-2020-6994 HIGH

A buffer overflow vulnerability was found in some devices of Hirschmann Automation and Control HiOS and HiSecOS. The vulnerability is due to improper parsing of URL arguments. An attacker could exploit this vulnerability by specially crafting HTTP requests to overflow an internal buffer. The following devices using HiOS Version 07.0.02 and lower are affected: RSP, RSPE, RSPS, RSPL, MSP, EES, EES, EESX, GRS, OS, RED. The following devices using HiSecOS Version 03.2.00 and lower are affected: EAGLE20/30.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-12,CWE-120,

Products Affected

Vendor Product Version
belden hirschmann_hisecos *
belden hirschmann_hios *
CVE-2020-9307 MEDIUM

Hirschmann OS2, RSP, and RSPE devices before HiOS 08.3.00 allow a denial of service. An unauthenticated, adjacent attacker can cause an infinite loop on one of the HSR ring ports of the device. This effectively breaks the redundancy of the HSR ring. If the attacker can perform the same attack on a second device, the ring is broken into two parts (thus disrupting communication between devices in the different parts).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
belden hirschmann_hios *
CVE-2021-27734 HIGH

Hirschmann HiOS 07.1.01, 07.1.02, and 08.1.00 through 08.5.xx and HiSecOS 03.3.00 through 03.5.01 allow remote attackers to change the credentials of existing users.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
belden hisecos *
belden hirschmann_hios 07.1.02
belden hirschmann_hios 07.1.01
belden hirschmann_hios *
CVE-2021-30061 HIGH

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, physically proximate attackers can execute code via a crafted file on a USB stick.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
schneider-electric tcsefea23f3f22_firmware *
belden tofino_argon_fa-tsa-220-tx/mm_firmware -
belden tofino_argon_fa-tsa-220-mm/tx_firmware -
belden eagle_20_tofino_943_987-502_-tx/mm_firmware -
belden eagle_20_tofino_943_987-505-mm/mm_firmware -
belden eagle_20_tofino_943_987-504-mm/tx_firmware -
belden tofino_xenon_security_appliance_firmware *
belden tofino_argon_fa-tsa-220-mm/mm_firmware -
belden tofino_argon_fa-tsa-220-tx/tx_firmware -
schneider-electric tcsefea23f3f21_firmware -
schneider-electric tcsefea23f3f20_firmware -
belden eagle_20_tofino_943_987-501-tx/tx_firmware -
belden tofino_argon_fa-tsa-100-tx/tx_firmware -
CVE-2021-30062 MEDIUM

On Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 before 03.23 and Belden Tofino Xenon Security Appliance, crafted OPC packets can bypass the OPC enforcer.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
belden tofino_argon_fa-tsa-220-mm/mm_firmware -
belden tofino_argon_fa-tsa-220-tx/tx_firmware -
schneider-electric tcsefm0000_firmware *
belden tofino_argon_fa-tsa-220-tx/mm_firmware -
belden tofino_argon_fa-tsa-220-mm/tx_firmware -
belden eagle_20_tofino_943_987-502_-tx/mm_firmware -
belden eagle_20_tofino_943_987-505-mm/mm_firmware -
belden eagle_20_tofino_943_987-501-tx/tx_firmware -
belden eagle_20_tofino_943_987-504-mm/tx_firmware -
belden tofino_argon_fa-tsa-100-tx/tx_firmware -
belden tofino_xenon_security_appliance_firmware *
CVE-2021-30063 MEDIUM

On Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 before 03.23 and Belden Tofino Xenon Security Appliance, crafted OPC packets can cause an OPC enforcer denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
belden tofino_argon_fa-tsa-220-mm/mm_firmware -
belden tofino_argon_fa-tsa-220-tx/tx_firmware -
schneider-electric tcsefm0000_firmware *
belden tofino_argon_fa-tsa-220-tx/mm_firmware -
belden tofino_argon_fa-tsa-220-mm/tx_firmware -
belden eagle_20_tofino_943_987-502_-tx/mm_firmware -
belden eagle_20_tofino_943_987-505-mm/mm_firmware -
belden eagle_20_tofino_943_987-501-tx/tx_firmware -
belden eagle_20_tofino_943_987-504-mm/tx_firmware -
belden tofino_argon_fa-tsa-100-tx/tx_firmware -
belden tofino_xenon_security_appliance_firmware *
CVE-2021-30064 MEDIUM

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an SSH login can succeed with hardcoded default credentials (if the device is in the uncommissioned state).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-798,

Products Affected

Vendor Product Version
schneider-electric tcsefea23f3f22_firmware *
belden tofino_argon_fa-tsa-220-tx/mm_firmware -
belden tofino_argon_fa-tsa-220-mm/tx_firmware -
belden eagle_20_tofino_943_987-502_-tx/mm_firmware -
belden eagle_20_tofino_943_987-505-mm/mm_firmware -
belden eagle_20_tofino_943_987-504-mm/tx_firmware -
belden tofino_xenon_security_appliance_firmware *
belden tofino_argon_fa-tsa-220-mm/mm_firmware -
belden tofino_argon_fa-tsa-220-tx/tx_firmware -
schneider-electric tcsefea23f3f21_firmware -
schneider-electric tcsefea23f3f20_firmware -
belden eagle_20_tofino_943_987-501-tx/tx_firmware -
belden tofino_argon_fa-tsa-100-tx/tx_firmware -
CVE-2021-30065 MEDIUM

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, crafted ModBus packets can bypass the ModBus enforcer. NOTE: this issue exists because of an incomplete fix of CVE-2017-11401.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6
cve@mitre.org 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
schneider-electric tcsefea23f3f22_firmware *
belden tofino_argon_fa-tsa-220-tx/mm_firmware -
belden tofino_argon_fa-tsa-220-mm/tx_firmware -
belden eagle_20_tofino_943_987-502_-tx/mm_firmware -
belden eagle_20_tofino_943_987-505-mm/mm_firmware -
belden eagle_20_tofino_943_987-504-mm/tx_firmware -
belden tofino_xenon_security_appliance_firmware *
belden tofino_argon_fa-tsa-220-mm/mm_firmware -
belden tofino_argon_fa-tsa-220-tx/tx_firmware -
schneider-electric tcsefea23f3f21_firmware -
schneider-electric tcsefea23f3f20_firmware -
belden eagle_20_tofino_943_987-501-tx/tx_firmware -
belden tofino_argon_fa-tsa-100-tx/tx_firmware -
CVE-2021-30066 HIGH

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an arbitrary firmware image can be loaded because firmware signature verification (for a USB stick) can be bypassed. NOTE: this issue exists because of an incomplete fix of CVE-2017-11400.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-347,

Products Affected

Vendor Product Version
schneider-electric tcsefea23f3f22_firmware *
belden tofino_argon_fa-tsa-220-tx/mm_firmware -
belden tofino_argon_fa-tsa-220-mm/tx_firmware -
belden eagle_20_tofino_943_987-502_-tx/mm_firmware -
belden eagle_20_tofino_943_987-505-mm/mm_firmware -
belden eagle_20_tofino_943_987-504-mm/tx_firmware -
belden tofino_xenon_security_appliance_firmware *
belden tofino_argon_fa-tsa-220-mm/mm_firmware -
belden tofino_argon_fa-tsa-220-tx/tx_firmware -
schneider-electric tcsefea23f3f21_firmware -
schneider-electric tcsefea23f3f20_firmware -
belden eagle_20_tofino_943_987-501-tx/tx_firmware -
belden tofino_argon_fa-tsa-100-tx/tx_firmware -
CVE-2022-40282

The web server of Hirschmann BAT-C2 before 09.13.01.00R04 allows authenticated command injection. This allows an authenticated attacker to pass commands to the shell of the system because the dir parameter of the FsCreateDir Ajax function is not sufficiently sanitized. The vendor's ID is BSECV-2022-21.

Products Affected

Vendor Product Version
belden hirschmann_bat-c2_firmware *
CVE-2025-70545

A stored cross-site scripting (XSS) vulnerability exists in the web management interface of the PPC (Belden) ONT 2K05X router running firmware v1.1.9_206L. The Common Gateway Interface (CGI) component improperly handles user-supplied input, allowing a remote, unauthenticated attacker to inject arbitrary JavaScript that is persistently stored and executed when the affected interface is accessed.

Products Affected

Vendor Product Version
belden ppc_2k05x_firmware 1.1.9_206l