CVE-2022-4986

Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://assets.belden.com/m/1c8fe5d916567af6/original/Belden_Security_Bulletin_BSECV-2022-08.pdf	Third Party Advisory
https://www.vulncheck.com/advisories/hirschmann-eaglesdv-denial-of-service-via-tls	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:beldan:eaglesdv_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:beldan:eaglesdv:-:*:*:*:*:*:*:*

History

02 Jun 2026, 17:34

Type	Values Removed	Values Added
First Time		Beldan Beldan eaglesdv Firmware Beldan eaglesdv
CPE		cpe:2.3:o:beldan:eaglesdv_firmware:::::::: cpe:2.3:h:beldan:eaglesdv:-:::::::*
References	~~() https://assets.belden.com/m/1c8fe5d916567af6/original/Belden_Security_Bulletin_BSECV-2022-08.pdf -~~	() https://assets.belden.com/m/1c8fe5d916567af6/original/Belden_Security_Bulletin_BSECV-2022-08.pdf - Third Party Advisory
References	~~() https://www.vulncheck.com/advisories/hirschmann-eaglesdv-denial-of-service-via-tls -~~	() https://www.vulncheck.com/advisories/hirschmann-eaglesdv-denial-of-service-via-tls - Third Party Advisory

03 Apr 2026, 23:17

Type	Values Removed	Values Added
References	~~{'url': 'https://www.belden.com/security', 'source': 'disclosure@vulncheck.com'}~~	() https://assets.belden.com/m/1c8fe5d916567af6/original/Belden_Security_Bulletin_BSECV-2022-08.pdf - () https://www.vulncheck.com/advisories/hirschmann-eaglesdv-denial-of-service-via-tls -

02 Apr 2026, 23:17

Type	Values Removed	Values Added
Summary	(en) Hirschmann EagleSDV contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.	(en) Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.

02 Apr 2026, 22:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-04-02 22:16

Updated : 2026-06-02 17:34

NVD link : CVE-2022-4986

Mitre link : CVE-2022-4986

CVE.ORG link : CVE-2022-4986

JSON object : View

Products Affected

beldan

eaglesdv
eaglesdv_firmware

CWE

CWE-400

Uncontrolled Resource Consumption

7.5 /10