CVE-2017-20233 MEDIUM

CVE-2017-20233: Hirschmann HiLCOS Layer-2 Firewall Multicast Broadcast Traffic Bypass

Vendor Belden

Product Hirschmann HiLCOS OpenBAT, BAT450, WLC

Weakness CWE-284

Published April 3, 2026

Last update May 25, 2026

View on NVD All CVEs

CVSS base score

5.4/10

Attack vector Adjacent

Attack complexity Low

Privileges required None

User interaction None

Confidentiality Low

Integrity Low

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

What the vulnerability does

01Description

Hirschmann HiLCOS products OpenBAT, BAT450, WLC, BAT867 contains a firewall filtering vulnerability that fails to correctly filter IPv4 multicast and broadcast traffic when management IP address filtering is disabled, allowing configured filter rules to be bypassed. Attackers with network access can inject or observe multicast and broadcast packets that should have been blocked by the firewall.

Key dates

02Disclosure timeline

April 3, 2026 CVE published

May 25, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2017-20233 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/284.html

Related vulnerabilities

Identifiers

CVE CVE-2017-20233

CWE CWE-284

CVSS 5.4 / MEDIUM

Affected versions

Vendor Belden

Product Hirschmann HiLCOS OpenBAT, BAT450, WLC

Affected ≤ 9.10.5126-REL

Vendor Belden

Product Hirschmann HiLCOS OpenBAT, BAT450, WLC

Affected ≤ 9.12.5500-REL

Vendor Belden

Product Hirschmann HiLCOS BAT867

Affected ≤ 9.14.5500-REL

Vendor Belden

Product Hirschmann HiLCOS BAT867

Affected All versions

CVE-2017-20233: Hirschmann HiLCOS Layer-2 Firewall Multicast Broadcast Traffic Bypass

01Description

02Disclosure timeline

03References

04Related CVE