Security Advisories
Hillstone Network Security Advisories
Hillstone Networks Product Security Incident Response Team (PSIRT) is responsible for receiving, assessing, and publicly disclosing security vulnerabilities affecting Hillstone products and services. As the company’s official vulnerability disclosure channel, Hillstone Networks PSIRT is dedicated to protecting customers and partners through responsible disclosure practices and by ensuring compliance with applicable laws and regulations in the management and remediation of product security issues.
Hillstone HSM Multiple Unauthenticated Arbitrary Command Execution Vulnerabilities
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0014HighJune 18, 2026External submissionN/A Overview Hillstone HSM contains multiple unauthenticated arbitrary command execution vulnerabilities. These vulnerabilities exist because the system does not properly...
Hillstone HSM Arbitrary File Write Vulnerability
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0013HighJune 18, 2026External submissionN/A Overview Hillstone HSM contains an arbitrary file write vulnerability. The vulnerability exists because the system does not strictly validate or restrict...
Hillstone HSM Arbitrary File Deletion Vulnerability
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0012MediumJune 18, 2026External submissionN/A Overview Hillstone HSM contains an arbitrary file deletion vulnerability. The vulnerability exists because the system does not properly validate user-supplied file...
Hillstone HSM Multiple Arbitrary Command Execution Vulnerabilities
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0011HighJune 18, 2026External submissionN/A Overview Hillstone HSM contains multiple arbitrary command execution vulnerabilities. These vulnerabilities exist because the system does not properly validate input...
Hillstone HSA Arbitrary Command Execution Vulnerability
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0010HighJune 18, 2026External submissionN/A Overview Hillstone HSA contains an arbitrary command execution vulnerability. The vulnerability exists because the system does not properly validate input from...
Hillstone HSA Low-Privilege Account SQL Injection Vulnerability
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0009MediumJune 18, 2026External submissionN/A Overview Hillstone HSA contains a SQL injection vulnerability that can be exploited by a low-privilege account. The vulnerability exists because parameters in the...
Hillstone HSA Low-Privilege Account Arbitrary Command Execution Vulnerability
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0008HighJune 18, 2026External submissionN/A Overview Hillstone HSA contains an arbitrary command execution vulnerability that can be exploited by a low-privilege account. The vulnerability exists because the...
Hillstone HSM5 Remote Command Execution Vulnerability
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0006HighJune 18, 2026External submissionN/A Overview Hillstone HSM5 contains a remote command execution vulnerability. The vulnerability exists because the system does not properly validate input from...
Hillstone HSM5 Backend File Deletion Vulnerability
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0005MediumJune 18, 2026External submissionN/A Overview Hillstone HSM5 contains a backend file deletion vulnerability. The vulnerability exists because the system does not properly validate user-supplied file...
Hillstone HSM 4.x Remote Command Execution Vulnerability
Advisory IDSeverityRelease DateReported ByCVE IDHSVD-2026-0004HighApril 17, 2026External submissionN/A Overview Hillstone HSM 4.x Remote Command Execution Vulnerability. The vulnerability is due to the fact that the system does not effectively filter the input of...
For the 4th year in a row, Hillstone Networks has been recognized in Gartner Peer Insights Customers’ Choice for Network Firewalls.
The Customers’ Choice is a rating of vendors in a given market — for Hillstone, it’s Network Firewalls — that take into account both the number of reviews and the overall user rating. Based on feedback and ratings from our end users who have purchased, implemented and are happily using our products and services, Hillstone’s overall rating came to 4.9.
