CVE-2021-4477

Summary

Hirschmann HiLCOS OpenBAT and BAT450 products contain a firewall bypass vulnerability in IPv6 IPsec deployments that allows traffic from VPN connections to bypass configured firewall rules. Attackers can exploit this vulnerability by establishing IPv6 IPsec connections (IKEv1 or IKEv2) while simultaneously using an IPv6 Internet connection to circumvent firewall policy enforcement.

Affected Software

VendorProductVersion RangeStatus
BeldenHirschmann HiLCOS OpenBAT3.80-RELaffected
BeldenHirschmann HiLCOS OpenBAT8.90-RELaffected
BeldenHirschmann HiLCOS OpenBAT9.00-RELaffected
BeldenHirschmann HiLCOS OpenBAT9.00-RU1affected
BeldenHirschmann HiLCOS OpenBAT9.10-RELaffected
BeldenHirschmann HiLCOS OpenBAT9.12-RELaffected
BeldenHirschmann HiLCOS OpenBAT9.12-RU1affected
BeldenHirschmann HiLCOS OpenBAT9.12-RU2affected
BeldenHirschmann HiLCOS OpenBAT9.12-RU3affected
BeldenHirschmann HiLCOS OpenBAT9.12-RU4affected
BeldenHirschmann HiLCOS OpenBAT9.12-RU5affected
BeldenHirschmann HiLCOS OpenBAT9.12-RU6affected
BeldenHirschmann HiLCOS OpenBAT9.12-RU7affected
BeldenHirschmann HiLCOS OpenBAT9.12-RU8affected
BeldenHirschmann HiLCOS OpenBAT9.12-RU9affected
BeldenHirschmann HiLCOS OpenBAT9.13-RELaffected
BeldenHirschmann HiLCOS OpenBAT9.13-RU1affected
BeldenHirschmann HiLCOS OpenBAT10.12-RELaffected
BeldenHirschmann HiLCOS OpenBAT10.12-RU1affected
BeldenHirschmann HiLCOS OpenBAT10.12-RU2unaffected

Weaknesses

  • CWE-284: CWE-284 Improper access control

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References