Hirschmann HiOS and HiSecOS Authentication Bypass Vulnerability in HTTP Management Module

An authentication bypass vulnerability has been identified in the HTTP(S) management module of Hirschmann HiOS and HiSecOS products, including RSP, RSPE, RSPS, RSPL, MSP, EES, EESX, GRS, OS, RED, and EAGLE. This vulnerability allows unauthenticated remote attackers to gain administrative access by sending specially crafted HTTP requests. Exploitation of this vulnerability takes advantage of improper authentication handling, enabling attackers to access the authentication status and privileges of previously authenticated users without valid credentials.

Impact

Exploitation of this vulnerability could allow attackers to bypass authentication and gain administrative access to the device, enabling them to perform actions such as downloading or uploading configurations, changing firmware, or executing other administrative functions.

Remediation

Users are advised to update to Hirschmann HiOS versions 06.1.05 or 07.0.00, or to HiSecOS EAGLE versions 03.0.03 or 03.1.00.