Cyber Resilience

CVE-2024-14034

CriticalPublic PoC

Published: 02 April 2026

Published
02 April 2026
Modified
03 April 2026
KEV Added
Patch
CVSS Score v4 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0046 36.2th percentile
Risk Priority 70 floored blend · peak EPSS

Summary

CVE-2024-14034 is a critical-severity Improper Authentication (CWE-287) vulnerability in Belden (inferred from references). Its CVSS base score is 9.3 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 36.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and IA-2 (Identification and Authentication (Organizational Users)).

Deeper analysis

CVE-2024-14034 is an authentication bypass vulnerability (CWE-287) affecting Hirschmann HiEOS devices in versions prior to 01.1.00. The flaw resides in the HTTP(S) management module, where improper authentication handling enables unauthenticated remote attackers to gain administrative access by sending specially crafted HTTP(S) requests. This critical issue carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), highlighting its high severity due to network accessibility without prerequisites.

Unauthenticated attackers with network access to the device can exploit this vulnerability remotely over HTTP(S). Successful exploitation grants elevated administrative privileges, allowing unauthorized actions such as downloading or uploading configurations and modifying firmware, potentially leading to full device compromise, data exfiltration, or persistent control.

The Belden Security Bulletin BSECV-2024-02 and Vulncheck advisory detail mitigation steps, with affected versions prior to 01.1.00 indicating that upgrading to version 01.1.00 or later resolves the issue. Security practitioners should consult these references for full patch instructions and additional hardening guidance.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Hirschmann HiEOS devices versions prior to 01.1.00 contain an authentication bypass vulnerability in the HTTP(S) management module that allows unauthenticated remote attackers to gain administrative access by sending specially crafted HTTP(S) requests. Attackers can exploit improper authentication handling to obtain…

more

elevated privileges and perform unauthorized actions including configuration download or upload and firmware modification.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

Authentication bypass in exposed HTTP(S) management interface directly enables remote exploitation of a public-facing application to obtain administrative access without credentials.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-1044Shared CWE-287
CVE-2026-1740Shared CWE-287
CVE-2026-7022Shared CWE-287
CVE-2024-13111Shared CWE-287
CVE-2026-29145Shared CWE-287
CVE-2018-25236Shared CWE-287
CVE-2024-53704Shared CWE-287
CVE-2024-57049Shared CWE-287
CVE-2025-12374Shared CWE-287
CVE-2025-15484Shared CWE-287

Affected Assets

Belden
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Remediates the authentication bypass vulnerability by identifying, testing, and installing the vendor firmware update to version 01.1.00 or later.

prevent

Enforces approved authorizations for logical access in the HTTP(S) management module, preventing unauthenticated attackers from gaining administrative privileges.

prevent

Requires unique identification and authentication for organizational users, addressing the improper authentication handling that enables privilege escalation.

References