Hirschmann Industrial HiVision External Application Path Hijacking Leading to Arbitrary Code Execution

Advisories

Hirschmann Industrial HiVision External Application Path Hijacking Leading to Arbitrary Code Execution

severity: high
date: 4/3/2026
Affecting: Hirschmann Industrial HiVision < 08.1.04 and 08.2.00
CVE: CVE-2022-4987
CWE: CWE-426 Untrusted Search Path
CVSS: 7.0
CVSS V4 Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References: Belden Security Advisory
Description: Hirschmann Industrial HiVision version 08.1.03 prior to 08.1.04 and 08.2.00 contains a vulnerability in the execution of user-configured external applications that allows a local attacker to execute arbitrary binaries. Due to insufficient path sanitization, an attacker can place a malicious binary in the execution path of a configured external application, causing it to be executed instead of the intended application. This can result in execution with elevated privileges depending on the context of the external application.

Ready to get Started?

Explore VulnCheck, a next-generation Cyber Threat Intelligence platform, which provides exploit and vulnerability intelligence to help you prioritize and remediate vulnerabilities that matter.

Vulnerability Prioritization
Prioritize vulnerabilities that matter based on the threat landscape and defer vulnerabilities that don't.
Early Warning System
Real-time alerting of changes in the vulnerability landscape so that you can take action before the attacks start.

Schedule a Demo