Firewall Filtering Vulnerability in Hirschmann HiLCOS Products Affecting IPv4 Multicast Traffic
CVE-2017-20233

5.9MEDIUM

Key Information:

Vendor: Belden
Status: Hirschmann Hilcos Openbat, Bat450, Wlc; Hirschmann Hilcos Bat867
Vendor: CVE Published:; 3 April 2026

What is CVE-2017-20233?

The vulnerability in Hirschmann HiLCOS products allows attackers to bypass security filter rules concerning IPv4 multicast and broadcast traffic. When the management IP address filtering feature is disabled, the firewall may fail to adequately restrict multicast and broadcast traffic, resulting in potential packet injection and interception by unauthorized network individuals. This flaw puts configurations at risk, as attackers with access can observe or manipulate sensitive data that is not properly filtered.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Hirschmann HiLCOS BAT867 0 <= 9.14.5500-REL

Hirschmann HiLCOS BAT867 0

Hirschmann HiLCOS OpenBAT, BAT450, WLC 0 <= 9.10.5126-REL

References

https://assets.belden.com/m/11a07596f0bf1018/original/Sec...

vendor-advisory

https://www.vulncheck.com/advisories/hirschmann-hilcos-la...

third-party-advisory

CVSS V4

Score:

5.9

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 3, 2026
Vulnerability Reserved
Apr 3, 2026

JSON

Belden

What is CVE-2017-20233?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V4

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.