{"cve":{"cve_id":"CVE-2018-25236","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00502,"epss_percentile":0.38929,"epss_as_of":"2026-06-23","description":"Hirschmann HiOS and HiSecOS products RSP, RSPE, RSPS, RSPL, MSP, EES, EESX, GRS, OS, RED, EAGLE contain an authentication bypass vulnerability in the HTTP(S) management module that allows unauthenticated remote attackers to gain administrative access by crafting specially formed HTTP requests. Attackers can exploit improper authentication handling to obtain the authentication status and privileges of a previously authenticated user without providing valid credentials.","published_at":"2026-04-03T22:44:43.486000Z","last_modified_at":null,"cvss_v3_score":9.8,"cvss_v3_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"CRITICAL","cvss_v4_score":9.3,"cvss_v4_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N","cvss_v4_severity":"CRITICAL","ssvc_decision":null,"ssvc_exploitation":"none","ssvc_automatable":true,"ssvc_technical_impact":"total","cwes":["CWE-287"],"nvd_references":["https://assets.belden.com/m/52ecadbb5f1b0e04/original/Security-Bulletin-Web-Server-Authentication-Bypass-HiOS-HiSecOS-Hirschmann-BSECV-2018-05.pdf","https://www.vulncheck.com/advisories/hirschmann-hios-hisecos-authentication-bypass-via-http-management"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:11:18.708082Z"},"effective_severity":"CRITICAL","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":"4.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"AT","name":"Attack Requirements","value":"N","value_label":"None"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"VC","name":"Confidentiality (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VI","name":"Integrity (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VA","name":"Availability (Vulnerable System)","value":"H","value_label":"High"},{"metric":"SC","name":"Confidentiality (Subsequent System)","value":"N","value_label":"None"},{"metric":"SI","name":"Integrity (Subsequent System)","value":"N","value_label":"None"},{"metric":"SA","name":"Availability (Subsequent System)","value":"N","value_label":"None"}]},"affected":[{"vendor_slug":"belden","vendor_name":"Belden","product_slug":"hirschmann-hios","product_name":"Hirschmann HiOS","version_start":"0","version_start_inclusive":true,"version_end":"05.07","version_end_inclusive":true,"cpe23_uri":"cve5:belden:hirschmann-hios:0:05.07"},{"vendor_slug":"belden","vendor_name":"Belden","product_slug":"hirschmann-hios","product_name":"Hirschmann HiOS","version_start":"0","version_start_inclusive":true,"version_end":"06.1.04","version_end_inclusive":true,"cpe23_uri":"cve5:belden:hirschmann-hios:0:06.1.04"},{"vendor_slug":"belden","vendor_name":"Belden","product_slug":"hirschmann-hios","product_name":"Hirschmann HiOS","version_start":"0","version_start_inclusive":true,"version_end":"06.2.00","version_end_inclusive":true,"cpe23_uri":"cve5:belden:hirschmann-hios:0:06.2.00"},{"vendor_slug":"belden","vendor_name":"Belden","product_slug":"hirschmann-hios","product_name":"Hirschmann HiOS","version_start":"06.1.05","version_start_inclusive":true,"version_end":"06.1.05","version_end_inclusive":true,"cpe23_uri":"cve5:belden:hirschmann-hios:06.1.05:06.1.05"},{"vendor_slug":"belden","vendor_name":"Belden","product_slug":"hirschmann-hios","product_name":"Hirschmann HiOS","version_start":"07.0.00","version_start_inclusive":true,"version_end":"07.0.00","version_end_inclusive":true,"cpe23_uri":"cve5:belden:hirschmann-hios:07.0.00:07.0.00"},{"vendor_slug":"belden","vendor_name":"Belden","product_slug":"hirschmann-hios","product_name":"Hirschmann HiOS","version_start":"03.1.00","version_start_inclusive":true,"version_end":"03.1.00","version_end_inclusive":true,"cpe23_uri":"cve5:belden:hirschmann-hios:03.1.00:03.1.00"},{"vendor_slug":"belden","vendor_name":"Belden","product_slug":"hirschmann-hisecos-eagle","product_name":"Hirschmann HiSecOS EAGLE","version_start":"0","version_start_inclusive":true,"version_end":"03.00.02","version_end_inclusive":true,"cpe23_uri":"cve5:belden:hirschmann-hisecos-eagle:0:03.00.02"},{"vendor_slug":"belden","vendor_name":"Belden","product_slug":"hirschmann-hisecos-eagle","product_name":"Hirschmann HiSecOS EAGLE","version_start":"03.0.03","version_start_inclusive":true,"version_end":"03.0.03","version_end_inclusive":true,"cpe23_uri":"cve5:belden:hirschmann-hisecos-eagle:03.0.03:03.0.03"}],"exploit_refs":[],"news":[],"references":[{"url":"https://assets.belden.com/m/52ecadbb5f1b0e04/original/Security-Bulletin-Web-Server-Authentication-Bypass-HiOS-HiSecOS-Hirschmann-BSECV-2018-05.pdf","source_type":"MISC","tags":[]},{"url":"https://www.vulncheck.com/advisories/hirschmann-hios-hisecos-authentication-bypass-via-http-management","source_type":"VENDOR_ADVISORY","tags":["advisory"]}],"timeline":[{"type":"published","at":"2026-04-03T22:44:43.486000Z","label":"CVE published","source":null},{"type":"ssvc_changed","at":"2026-06-24T00:31:13.951195Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-24T00:31:13.951195Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-24T00:31:13.951195Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:31:13.951195Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:31:13.951195Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:31:13.951195Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:31:13.951195Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:31:13.951195Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:31:13.951195Z","label":"CVSS score revised","source":"vulnrichment"}]}