VYPR

HiLCOS

by Belden Hirschmann

CVEs (3)

  • CVE-2021-4477CriApr 3, 2026
    risk 0.59cvss 9.1epss 0.00

    Hirschmann HiLCOS OpenBAT and BAT450 products contain a firewall bypass vulnerability in IPv6 IPsec deployments that allows traffic from VPN connections to bypass configured firewall rules. Attackers can exploit this vulnerability by establishing IPv6 IPsec connections (IKEv1 or…

  • CVE-2015-10148HigApr 3, 2026
    risk 0.53cvss 8.2epss 0.00

    Hirschmann HiLCOS devices OpenBAT, WLC, BAT300, BAT54 prior to 8.80 and OpenBAT prior to 9.10 are shipped with identical default SSH and SSL keys that cannot be changed, allowing unauthenticated remote attackers to decrypt or intercept encrypted management communications.…

  • CVE-2017-20233MedApr 3, 2026
    risk 0.35cvss 5.4epss 0.00

    Hirschmann HiLCOS products OpenBAT, BAT450, WLC, BAT867 contains a firewall filtering vulnerability that fails to correctly filter IPv4 multicast and broadcast traffic when management IP address filtering is disabled, allowing configured filter rules to be bypassed. Attackers…