Description
HiOS Switch Platform versions 09.1.00 through 09.4.04 and 10.0.00 through 10.3.00 contain a denial-of-service vulnerability in the web interface that allows remote attackers to reboot the affected device by sending a malicious HTTP GET request to a specific endpoint. Attackers can trigger an uncontrolled reboot condition through crafted HTTP requests to cause service disruption and unavailability of the switch.
Published: 2026-04-02
Score: 9.2 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability in the HiOS Switch Platform web interface allows a remote attacker to send a malicious HTTP GET request to a specific endpoint, causing the device to reboot. Because the endpoint does not perform authentication, the request is accepted and leads to an uncontrolled reboot that disrupts service. This represents Missing Authentication for a Critical Function (CWE‑306) and results in denial of service.

Affected Systems

Affected products are the Belden Hirschmann HiOS Switch Platform. Versions 09.1.00 through 09.4.04 and 10.0.00 through 10.3.00 contain the flaw. Firmware releases 09.4.05 and later, and any newer 10.3.x releases, are not susceptible.

Risk and Exploitability

With a CVSS score of 9.2, the vulnerability is considered critical. An attacker can exploit it by sending a malicious HTTP GET request over the network to the vulnerable endpoint, with no credentials required. The EPSS score is < 1%, indicating a very low probability of exploitation in the wild, yet the high severity underlines that any network exposed to the switch’s web interface is at risk of abrupt service disruption. Timely patching or network segmentation is essential to mitigate potential downtime.

Generated by OpenCVE AI on May 26, 2026 at 02:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest firmware release that incorporates the fix (09.4.05 or newer in the 09.4.x line and any newer 10.3.x releases).
  • Limit or isolate web‑interface access to trusted networks, or disable the vulnerable endpoint if the vendor provides a configuration option.
  • Monitor the device for unexpected reboots after patching or access restriction to confirm the effectiveness of the mitigation.

Generated by OpenCVE AI on May 26, 2026 at 02:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 05 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Belden hios Switch
CPEs cpe:2.3:a:belden:hios_switch:*:*:*:*:*:*:*:*
Vendors & Products Belden hios Switch

Tue, 26 May 2026 00:00:00 +0000

Type Values Removed Values Added
Description HiOS Switch Platform versions 09.1.00 prior to 09.4.05 and 10.3.01 contains a denial-of-service vulnerability in the web interface that allows remote attackers to reboot the affected device by sending a malicious HTTP GET request to a specific endpoint. Attackers can trigger an uncontrolled reboot condition through crafted HTTP requests to cause service disruption and unavailability of the switch. HiOS Switch Platform versions 09.1.00 through 09.4.04 and 10.0.00 through 10.3.00 contain a denial-of-service vulnerability in the web interface that allows remote attackers to reboot the affected device by sending a malicious HTTP GET request to a specific endpoint. Attackers can trigger an uncontrolled reboot condition through crafted HTTP requests to cause service disruption and unavailability of the switch.

Tue, 12 May 2026 21:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H'}

 cvssV3_1

{'score': 8.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H'}

Fri, 03 Apr 2026 22:45:00 +0000

Type Values Removed Values Added
References

Fri, 03 Apr 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 03 Apr 2026 10:15:00 +0000

Type Values Removed Values Added
First Time appeared Belden
Belden hirschmann Hios Switch Platform
Vendors & Products Belden
Belden hirschmann Hios Switch Platform

Thu, 02 Apr 2026 23:00:00 +0000

Type Values Removed Values Added
Description HiOS Switch Platform contains a denial-of-service vulnerability in the web interface that allows remote attackers to reboot the affected device by sending a malicious HTTP GET request to a specific endpoint. Attackers can trigger an uncontrolled reboot condition through crafted HTTP requests to cause service disruption and unavailability of the switch. HiOS Switch Platform versions 09.1.00 prior to 09.4.05 and 10.3.01 contains a denial-of-service vulnerability in the web interface that allows remote attackers to reboot the affected device by sending a malicious HTTP GET request to a specific endpoint. Attackers can trigger an uncontrolled reboot condition through crafted HTTP requests to cause service disruption and unavailability of the switch.

Thu, 02 Apr 2026 20:45:00 +0000

Type Values Removed Values Added
Description HiOS Switch Platform contains a denial-of-service vulnerability in the web interface that allows remote attackers to reboot the affected device by sending a malicious HTTP GET request to a specific endpoint. Attackers can trigger an uncontrolled reboot condition through crafted HTTP requests to cause service disruption and unavailability of the switch.
Title HiOS Switch Platform Denial-of-Service via Web Interface
Weaknesses CWE-306
References
Metrics cvssV3_1

{'score': 9.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H'}

cvssV4_0

{'score': 9.2, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H'}

Subscriptions

Belden Hios Switch Hirschmann Hios Switch Platform
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-05-25T23:41:27.330Z

Reserved: 2026-04-01T21:14:41.757Z

Link: CVE-2025-15620

cve-icon Vulnrichment

Updated: 2026-04-03T15:38:26.788Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-02T21:16:40.137

Modified: 2026-06-05T18:06:11.700

Link: CVE-2025-15620

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-26T02:30:26Z

Weaknesses