CVE-2017-20233 - Vulnerability Details

- Hirschmann HiLCOS Layer-2 Firewall Multicast Broadcast Traffic Bypass

Description

Hirschmann HiLCOS products OpenBAT, BAT450, WLC, BAT867 contains a firewall filtering vulnerability that fails to correctly filter IPv4 multicast and broadcast traffic when management IP address filtering is disabled, allowing configured filter rules to be bypassed. Attackers with network access can inject or observe multicast and broadcast packets that should have been blocked by the firewall.

Published: 2026-04-03

Score: 5.3 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability in Hirschmann HiLCOS products allows a firewall to fail when filtering IPv4 multicast and broadcast traffic if management IP address filtering is disabled, enabling attackers to inject or observe multicast/broadcast packets that should be blocked by configured rules, thereby bypassing intended traffic restrictions. This weakness is categorized as a lack of proper authorization control (CWE-284).

Affected Systems

Affected products include Hirschmann HiLCOS BAT867, OpenBAT, BAT450 and Wireless LAN Controller (WLC); the affected firmware or software versions are not specified in the public report.

Risk and Exploitability

The CVSS score of 5.3 indicates moderate severity, and the EPSS score of 0.00004 (0.004%) shows a very low but nonzero probability of exploitation. It is not listed in the CISA KEV catalog, yet the attack remains feasible for adversaries with network access. The likely attack vector is by sending malicious multicast or broadcast frames through the network when management IP address filtering is turned off, leveraging the firewall’s bypass to gain non‑authorized network traffic visibility or injection.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Belden

Hirschmann HiLCOS OpenBAT, BAT450, WLC

unaffected

Version	Status	Constraints
`0`	affected	≤ 9.10.5126-REL
`0`	affected	≤ 9.12.5500-REL
`0`	unaffected	—

Belden

Hirschmann HiLCOS BAT867

unaffected

Version	Status	Constraints
`0`	affected	≤ 9.14.5500-REL
`0`	affected	—

No data.

Vendor Product Confidence Versions

Belden

Hirschmann Hilcos Bat450

—

Version	Status	Scheme	Platform
`[0,9.10.5126-REL]`	affected	semver	—
`[0,9.12.5500-REL]`	affected	semver	—
`0`	unaffected	semver	—

Belden

Hirschmann Hilcos Bat867

95%

Version	Status	Scheme	Platform
`[0,9.14.5500-REL]`	affected	semver	—
`0`	affected	semver	—

Belden

Hirschmann Hilcos Openbat

100%

Version	Status	Scheme	Platform
`[0,9.10.5126-REL]`	affected	semver	—
`[0,9.12.5500-REL]`	affected	semver	—
`0`	unaffected	semver	—

Belden

Hirschmann Hilcos Wlc

—

Version	Status	Scheme	Platform
`[0,9.10.5126-REL]`	affected	semver	—
`[0,9.12.5500-REL]`	affected	semver	—
`0`	unaffected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the latest firmware patch released by Hirschmann for the affected HiLCOS devices
Ensure that management IP address filtering is enabled or disable multicast/broadcast traffic filtering if it is not required
Verify that firewall filtering rules are correctly enforced for multicast and broadcast traffic
Monitor network traffic for suspicious multicast or broadcast packets that should normally be blocked

Generated by OpenCVE AI on May 12, 2026 at 23:03 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00004.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://assets.belden.com/m/11a07596f0bf1018/original/Security-Bulletin-IPv4-Multicast-HiLCOS-Layer-2-Firewall-BSECV-2017-03.pdf
https://www.vulncheck.com/advisories/hirschmann-hilcos-layer-2-firewall-multicast-broadcast-traffic-bypass

History

Tue, 12 May 2026 21:30:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV4_0 `{'score': 5.9, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N'}`	cvssV4_0 `{'score': 5.3, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N'}`

Tue, 07 Apr 2026 00:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Belden Belden hirschmann Hilcos Bat450 Belden hirschmann Hilcos Bat867 Belden hirschmann Hilcos Openbat Belden hirschmann Hilcos Wlc
Vendors & Products		Belden Belden hirschmann Hilcos Bat450 Belden hirschmann Hilcos Bat867 Belden hirschmann Hilcos Openbat Belden hirschmann Hilcos Wlc

Mon, 06 Apr 2026 18:00:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 03 Apr 2026 22:45:00 +0000

Type	Values Removed	Values Added
Description		Hirschmann HiLCOS products OpenBAT, BAT450, WLC, BAT867 contains a firewall filtering vulnerability that fails to correctly filter IPv4 multicast and broadcast traffic when management IP address filtering is disabled, allowing configured filter rules to be bypassed. Attackers with network access can inject or observe multicast and broadcast packets that should have been blocked by the firewall.
Title		Hirschmann HiLCOS Layer-2 Firewall Multicast Broadcast Traffic Bypass
Weaknesses		CWE-284
References		https://assets.belden.com/m/11a07596f0bf1018/original/Security-Bulletin-IPv4-Multicast-HiLCOS-Layer-2-Firewall-BSECV-2017-03.pdf https://www.vulncheck.com/advisories/hirschmann-hilcos-layer-2-firewall-multicast-broadcast-traffic-bypass
Metrics		cvssV3_1 `{'score': 5.4, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N'}` cvssV4_0 `{'score': 5.9, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N'}`

Subscriptions

Belden Hirschmann Hilcos Bat450 Hirschmann Hilcos Bat867 Hirschmann Hilcos Openbat Hirschmann Hilcos Wlc

MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published: 2026-04-03T22:47:07.496Z

Updated: 2026-05-12T20:46:14.331Z

Reserved: 2026-04-03T17:40:03.508Z

Link: CVE-2017-20233

Vulnrichment

Updated: 2026-04-06T16:50:29.107Z

NVD

Status : Awaiting Analysis

Published: 2026-04-03T23:16:59.763

Modified: 2026-04-07T13:20:55.200

Link: CVE-2017-20233

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-12T23:15:27Z

Weaknesses

CWE-284

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object