Description
Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.
Published: 2026-04-02
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: Denial of Service
Action: Immediate Patch
AI Analysis

Impact

A flaw in the TLS handling of Hirschmann EagleSDV devices makes the device crash when a TLS 1.0 or TLS 1.1 session is established. The resulting crash prevents the device from responding to legitimate traffic, effectively disrupting its availability. The vulnerability is classified as a resource exhaustion weakness, identified as CWE‑400.

Affected Systems

The issue affects Belden Hirschmann EagleSDV equipment running firmware version 05.4.01 and earlier. Users should verify that their device is not running a version earlier than 05.4.02, which contains the fix.

Risk and Exploitability

The CVSS score of 8.7 indicates a high severity scenario. No EPSS score is available, and the vulnerability is not listed in the CISA KEV catalog, implying no confirmed exploits yet. Attackers are likely to exploit the flaw by initiating TLS connections using the outdated TLS 1.0 or TLS 1.1 protocols directly over the network, causing the device to crash during the handshake. The risk is significant because a single targeted TLS connection can bring the device offline.

Generated by OpenCVE AI on April 3, 2026 at 01:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest firmware update (version 05.4.02 or newer) to the Hirschmann EagleSDV device.
  • If an update cannot be applied immediately, block or disable connections that use TLS 1.0 or TLS 1.1 to the device via firewall or access controls.
  • Verify connectivity after applying the mitigation to ensure the device functions normally.

Generated by OpenCVE AI on April 3, 2026 at 01:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 04 Apr 2026 00:00:00 +0000

Type Values Removed Values Added
References

Fri, 03 Apr 2026 22:45:00 +0000

Type Values Removed Values Added
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

 cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

Fri, 03 Apr 2026 14:00:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 03 Apr 2026 10:15:00 +0000

Type Values Removed Values Added
First Time appeared Belden
Belden hirschmann Eaglesdv
Vendors & Products Belden
Belden hirschmann Eaglesdv

Thu, 02 Apr 2026 23:00:00 +0000

Type Values Removed Values Added
Description Hirschmann EagleSDV contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability. Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.
Metrics cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

 cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

Thu, 02 Apr 2026 21:45:00 +0000

Type Values Removed Values Added
Description Hirschmann EagleSDV contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.
Title Hirschmann EagleSDV Denial of Service via TLS
Weaknesses CWE-400
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Belden Hirschmann Eaglesdv
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-04-03T22:33:40.419Z

Reserved: 2026-04-02T21:38:23.572Z

Link: CVE-2022-4986

cve-icon Vulnrichment

Updated: 2026-04-03T12:54:07.310Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-02T22:16:23.597

Modified: 2026-04-03T23:17:01.267

Link: CVE-2022-4986

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-03T09:16:10Z

Weaknesses