This page lists publicly disclosed CVE vulnerabilities affecting belden_hirschmann gecko_lite_managed_switch_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-6040 | An Information Exposure issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. Non-sensitive information can be obtained anonymously. | [email protected] | 5.3 | 0.95% | 2017-06-29 | 2026-06-16 |
| CVE-2017-6038 | A Cross-Site Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web application does not sufficiently verify that requests were provided by the user who submitted the request. | [email protected] | 7.1 | 0.44% | 2017-06-29 | 2026-06-16 |
| CVE-2017-6036 | A Server-Side Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web server receives a request, but does not sufficiently verify that the request is being sent to the expected destination. | [email protected] | 6.5 | 0.92% | 2017-06-29 | 2026-06-16 |
| CVE-2017-5163 | An issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. After an administrator downloads a configuration file, a copy of the configuration file, which includes hashes of user passwords, is saved to a location that is accessible without authentication by path traversal. | [email protected] | 5.9 | 1.90% | 2017-02-13 | 2026-06-16 |