Belden Hirschmann HiLCOS up to 8.60/8.80/9.00-RU1/9.9 hard-coded key

Summaryinfo

A vulnerability, which was classified as critical, has been found in Belden Hirschmann HiLCOS up to 8.60/8.80/9.00-RU1/9.9. This impacts an unknown function. The manipulation leads to hard-coded key. This vulnerability is referenced as CVE-2015-10148. Remote exploitation of the attack is possible. No exploit is available. It is advisable to upgrade the affected component.

Detailsinfo

A vulnerability was found in Belden Hirschmann HiLCOS up to 8.60/8.80/9.00-RU1/9.9. It has been rated as critical. This issue affects an unknown functionality. The manipulation with an unknown input leads to a hard-coded key vulnerability. Using CWE to declare the problem leads to CWE-321. The use of a hard-coded cryptographic key significantly increases the possibility that encrypted data may be recovered. Impacted is confidentiality, integrity, and availability. The summary by CVE is:

Hirschmann HiLCOS devices OpenBAT, WLC, BAT300, BAT54 prior to 8.80 and OpenBAT prior to 9.10 are shipped with identical default SSH and SSL keys that cannot be changed, allowing unauthenticated remote attackers to decrypt or intercept encrypted management communications. Attackers can perform man-in-the-middle attacks, impersonate devices, and expose sensitive information by leveraging the shared default cryptographic keys across multiple devices.

The advisory is shared at assets.belden.com. The identification of this vulnerability is CVE-2015-10148 since 04/03/2026. The exploitation is known to be easy. The attack may be initiated remotely. No form of authentication is needed for a successful exploitation. Neither technical details nor an exploit are publicly available. MITRE ATT&CK project uses the attack technique T1600.001 for this issue.

Upgrading to version 9.10 eliminates this vulnerability.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Productinfo

Vendor

• Belden

Name

• Hirschmann HiLCOS

Version

• 8.0
• 8.1
• 8.2
• 8.3
• 8.4
• 8.5
• 8.6
• 8.7
• 8.8
• 8.9
• 8.10
• 8.11
• 8.12
• 8.13
• 8.14
• 8.15
• 8.16
• 8.17
• 8.18
• 8.19
• 8.20
• 8.21
• 8.22
• 8.23
• 8.24
• 8.25
• 8.26
• 8.27
• 8.28
• 8.29
• 8.30
• 8.31
• 8.32
• 8.33
• 8.34
• 8.35
• 8.36
• 8.37
• 8.38
• 8.39
• 8.40
• 8.41
• 8.42
• 8.43
• 8.44
• 8.45
• 8.46
• 8.47
• 8.48
• 8.49
• 8.50
• 8.51
• 8.52
• 8.53
• 8.54
• 8.55
• 8.56
• 8.57
• 8.58
• 8.59
• 8.60
• 8.61
• 8.62
• 8.63
• 8.64
• 8.65
• 8.66
• 8.67
• 8.68
• 8.69
• 8.70
• 8.71
• 8.72
• 8.73
• 8.74
• 8.75
• 8.76
• 8.77
• 8.78
• 8.79
• 8.80
• 9.0
• 9.00-RU1
• 9.1
• 9.2
• 9.3
• 9.4
• 9.5
• 9.6
• 9.7
• 9.8
• 9.9

CPE 2.3info

• 🔒
• 🔒
• 🔒

CPE 2.2info

• 🔒
• 🔒
• 🔒

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Discussion