Critical severity9.8NVD Advisory· Published Apr 2, 2026· Updated Apr 3, 2026
CVE-2024-14034
CVE-2024-14034
Description
Hirschmann HiEOS devices versions prior to 01.1.00 contain an authentication bypass vulnerability in the HTTP(S) management module that allows unauthenticated remote attackers to gain administrative access by sending specially crafted HTTP(S) requests. Attackers can exploit improper authentication handling to obtain elevated privileges and perform unauthorized actions including configuration download or upload and firmware modification.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: < 01.1.00
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.