Older versions of Hirschmann HiOS firmware are subject to a high-severity vulnerability that could facilitate unauthorized access to industrial network devices.

This vulnerability affects legacy versions of the HiOS firmware. Although it was disclosed late, the CVSS score of 7.5 indicates a significant flaw that likely permits an attacker to bypass security controls or impact device availability.

The presence of this vulnerability in industrial switches can lead to unauthorized network control and potential disruption of critical OT processes. The high severity reflects the risk of long-term exposure in environments where firmware updates are infrequently applied, potentially leading to persistent unauthorized access.

Immediate Action: Immediately upgrade all Hirschmann HiOS devices to version 08 or higher to remediate this long-standing vulnerability.

Proactive Monitoring: Conduct a thorough audit of network device logs for any historical signs of unauthorized access or unusual configuration changes.

Compensating Controls: Implement network segmentation to isolate vulnerable legacy devices and use hardware-based firewalls to restrict management traffic.

Public Exploit Available: false

The age and severity of this vulnerability make immediate patching mandatory for any remaining legacy installations. Organizations must transition away from HiOS versions prior to 08 to ensure the security of their network infrastructure.