CNNVD-202512-3160 Information

CNNVD ID

CNNVD-202512-3160

Related CVE

CVE-2023-53908

• CNNVD Published: 2025-12-17

Description (Chinese)

Belden HiSecOS是美国百通（Belden）公司的一套用于工业安全路由器的操作系统。 Belden HiSecOS 04.0.01版本存在安全漏洞，该漏洞源于XML配置处理不当，可能导致权限提升。

Description (English)

Belden HiSecOS is an operating system for industrial safety routers of the American company Belden. There is a security loophole in version Belden HiSecOS-04.0.01, which stems from the inappropriate handling of XML configurations, which may lead to increased privileges.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

百通

Published

2025-12-17

Last Modified

2026-02-24

References

https://www.belden.com/products/industrial-networking-cybersecurity/software-solutions/device-software/hisecos-firewall-software https://www.exploit-db.com/exploits/51537 https://www.vulncheck.com/advisories/hisecos-privilege-escalation-via-user-role-modification https://access.redhat.com/security/cve/cve-2023-53908