Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HiOS Switch Platform Denial-of-Service via Web Interface
Vulnerability Description
HiOS Switch Platform versions 09.1.00 prior to 09.4.05 and 10.3.01 contains a denial-of-service vulnerability in the web interface that allows remote attackers to reboot the affected device by sending a malicious HTTP GET request to a specific endpoint. Attackers can trigger an uncontrolled reboot condition through crafted HTTP requests to cause service disruption and unavailability of the switch.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
Belden Hirschmann HiOS Switch Platform 安全漏洞
Vulnerability Description
Belden Hirschmann HiOS Switch Platform是美国Belden公司的一款工业以太网交换机操作系统平台。 Belden Hirschmann HiOS Switch Platform 09.4.05之前版本和10.3.01存在安全漏洞,该漏洞源于Web接口存在拒绝服务漏洞,可能导致远程攻击者通过向特定端点发送恶意HTTP GET请求来重启受影响设备。
CVSS Information
N/A
Vulnerability Type
N/A