Home / Vulnerability Intelligence / CVE-2025-15620

CVE-2025-15620 - Vulnerability Analysis

HighCVSS: 8.6

Last Updated: April 2, 2026

HiOS Switch Platform - Denial of Service

Published: April 2, 2026Updated: April 2, 2026Remote Exploitable

Overview

HiOS Switch Platform contains a denial-of-service vulnerability caused by crafted HTTP GET requests to the web interface, letting remote attackers reboot the device, exploit requires network access.

Severity & Score

Severity: High

CVSS Score: 8.6

Impact

Remote attackers can reboot the device causing service disruption and unavailability.

Mitigation

Update to the latest version of HiOS Switch Platform.

References

https://assets.belden.com/m/702a656e81736b04/original/PSIRT-2_Web_Interface_HiOS.pdf

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2025-15620
Severity: High
CVSS Score: 8.6
Type: denial_of_service
Status: new

CWE

CWE-306

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H