Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

HiNET — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting HiNET. AI-powered Chinese analysis, POCs, and references for each vulnerability.

HiNET operates as a network infrastructure provider delivering connectivity and managed services to enterprise clients. Historically, their systems have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with 10 CVEs documented to date. Security assessments reveal common weaknesses in web interfaces and authentication mechanisms. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks for unpatched deployments. Organizations utilizing HiNET services should prioritize regular security updates and implement network segmentation to mitigate exposure to known exploitation vectors.

Top products by HiNET: GPON HiCOS’ client-side citizen digital certificate HiCOS Citizen verification component - Stack Buffer Overflow
CVE IDTitleCVSSSeverityPublished
CVE-2022-35222 HiCOS Citizen verification component - Stack Buffer Overflow — HiCOS Citizen verification component - Stack Buffer OverflowCWE-787 6.8 Medium2022-08-02
CVE-2022-32962 HiCOS’ client-side citizen digital certificate - Double Free — HiCOS’ client-side citizen digital certificateCWE-415 6.8 Medium2022-07-20
CVE-2022-32961 HiCOS’ client-side citizen digital certificate - Stack Buffer Overflow — HiCOS’ client-side citizen digital certificateCWE-787 6.8 Medium2022-07-20
CVE-2022-32960 HiCOS’ client-side citizen digital certificate - Stack Buffer Overflow — HiCOS’ client-side citizen digital certificateCWE-787 6.8 Medium2022-07-20
CVE-2022-32959 HiCOS’ client-side citizen digital certificate - Stack Buffer Overflow — HiCOS’ client-side citizen digital certificateCWE-787 6.8 Medium2022-07-20
CVE-2019-15065 A vulnerability was discovered in HiNet GPON firmware < I040GWR190731 that allows an attacker to read arbitrary files — GPON 9.3 Critical2019-10-17
CVE-2019-15066 A remote command execution vulnerability was discovered in HiNet GPON firmware < I040GWR190731 port 6998 — GPON 10.0 Critical2019-10-17
CVE-2019-13412 A vulnerability was discovered in HiNet GPON firmware < I040GWR190731 that allows an attacker to read arbitrary files — GPON 9.3 Critical2019-10-17
CVE-2019-15064 HiNet GPON firmware version < I040GWR190731 allows a user login to device without any authentication — GPON 9.8 -2019-10-17
CVE-2019-13411 A remote command execution vulnerability was discovered in HiNet GPON firmware < I040GWR190731 port 3097 — GPON 10.0 Critical2019-10-17

This page lists every published CVE security advisory associated with HiNET. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.