CVE-2017-20237: RCE in Hirschmann HiVision < 07.0.03
Plattform
linux
Komponente
hirschmann-hivision
Behoben in
07.0.03
CVE-2017-20237 is a critical Remote Code Execution (RCE) vulnerability affecting Hirschmann Industrial HiVision devices. This flaw allows an attacker to bypass authentication and execute arbitrary commands on the device with administrative privileges, potentially leading to complete system compromise. The vulnerability impacts versions prior to 06.0.07 and 07.0.03. A patch is available in version 07.0.03.
So beheben
Kein offizieller Patch verfügbar. Prüfe auf Workarounds oder überwache auf Updates.
Häufig gestellte Fragen
What is CVE-2017-20237?
CVE-2017-20237 is a Remote Code Execution (RCE) vulnerability in Hirschmann Industrial HiVision devices. It allows unauthenticated attackers to execute commands with administrative privileges by bypassing authentication checks within the master service.
Am I affected by CVE-2017-20237?
You are potentially affected if you are using Hirschmann Industrial HiVision versions 0–07.0.03. Versions prior to 06.0.07 and 07.0.03 are vulnerable to this RCE flaw.
How do I fix CVE-2017-20237?
The vulnerability is fixed in version 07.0.03. Upgrade your Hirschmann Industrial HiVision device to this version to mitigate the risk of remote code execution.
Abhängigkeiten automatisch überwachen
Werde benachrichtigt, wenn neue Schwachstellen deine Projekte betreffen. Für immer kostenlos.
Kostenlos starten