Lucene search

IcscertCVE-2019-18228

HistoryOct 31, 2019 - 10:15 p.m.

CVE-2019-18228

2019-10-3122:15:10

CWE-20

icscert

web.nvd.nist.gov

honeywell

equip series

ip cameras

vulnerability

denial of service

cve-2019-18228

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

44.5%

JSON

Honeywell equIP series IP cameras Multiple equIP Series Cameras, A vulnerability exists in the affected products where a specially crafted HTTP packet request could result in a denial of service.

Affected configurations

Nvd

Node

honeywellh2w2pc1m_firmwareMatch-

AND

honeywellh2w2pc1mMatch-

Node

honeywellh2w2per3_firmwareMatch-

AND

honeywellh2w2per3Match-

Node

honeywellh2w4per3_firmwareMatch-

AND

honeywellh2w4per3Match-

Node

honeywellh4w2per2_firmwareMatch-

AND

honeywellh4w2per2Match-

Node

honeywellh4w2per3_firmwareMatch-

AND

honeywellh4w2per3Match-

Node

honeywellh4w4per2_firmwareMatch-

AND

honeywellh4w4per2Match-

Node

honeywellh4w4per3_firmwareMatch-

AND

honeywellh4w4per3Match-

Node

honeywellh4w8pr2_firmwareMatch-

AND

honeywellh4w8pr2Match-

Node

honeywellhbd2per1_firmwareMatch-

AND

honeywellhbd2per1Match-

Node

honeywellhbw2per1_firmwareMatch-

AND

honeywellhbw2per1Match-

Node

honeywellhbw2per2_firmwareMatch-

AND

honeywellhbw2per2Match-

Node

honeywellhbw4per1_firmwareMatch-

AND

honeywellhbw4per1Match-

Node

honeywellhbw4per2_firmwareMatch-

AND

honeywellhbw4per2Match-

Node

honeywellhbw4pgr1_firmwareMatch-

AND

honeywellhbw4pgr1Match-

Node

honeywellhbw8pr2_firmwareMatch-

AND

honeywellhbw8pr2Match-

Node

honeywellhed2per3_firmwareMatch-

AND

honeywellhed2per3Match-

Node

honeywellhew2per2_firmwareMatch-

AND

honeywellhew2per2Match-

Node

honeywellhew2per3_firmwareMatch-

AND

honeywellhew2per3Match-

Node

honeywellhew4per2b_firmwareMatch-

AND

honeywellhew4per2bMatch-

Node

honeywellhew4per3_firmwareMatch-

AND

honeywellhew4per3Match-

Node

honeywellhew4per3b_firmwareMatch-

AND

honeywellhew4per3bMatch-

Node

honeywellhew4per2b_firmwareMatch-

AND

honeywellhew4per2bMatch-

Node

honeywellhdzp252di_firmwareMatch-

AND

honeywellhdzp252diMatch-

Node

honeywellhdzp304di_firmwareMatch-

AND

honeywellhdzp304diMatch-

Node

honeywellhpw2p1_firmwareMatch-

AND

honeywellhpw2p1Match-

Node

honeywellh2w2gr1_firmwareMatch-

AND

honeywellh2w2gr1Match-

VendorProductVersionCPE
honeywellh2w2pc1m_firmware-cpe:2.3:o:honeywell:h2w2pc1m_firmware:-:*:*:*:*:*:*:*
honeywellh2w2pc1m-cpe:2.3:h:honeywell:h2w2pc1m:-:*:*:*:*:*:*:*
honeywellh2w2per3_firmware-cpe:2.3:o:honeywell:h2w2per3_firmware:-:*:*:*:*:*:*:*
honeywellh2w2per3-cpe:2.3:h:honeywell:h2w2per3:-:*:*:*:*:*:*:*
honeywellh2w4per3_firmware-cpe:2.3:o:honeywell:h2w4per3_firmware:-:*:*:*:*:*:*:*
honeywellh2w4per3-cpe:2.3:h:honeywell:h2w4per3:-:*:*:*:*:*:*:*
honeywellh4w2per2_firmware-cpe:2.3:o:honeywell:h4w2per2_firmware:-:*:*:*:*:*:*:*
honeywellh4w2per2-cpe:2.3:h:honeywell:h4w2per2:-:*:*:*:*:*:*:*
honeywellh4w2per3_firmware-cpe:2.3:o:honeywell:h4w2per3_firmware:-:*:*:*:*:*:*:*
honeywellh4w2per3-cpe:2.3:h:honeywell:h4w2per3:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
honeywell	h2w2pc1m_firmware	-	cpe:2.3:o:honeywell:h2w2pc1m_firmware:-:::::::*
honeywell	h2w2pc1m	-	cpe:2.3:h:honeywell:h2w2pc1m:-:::::::*
honeywell	h2w2per3_firmware	-	cpe:2.3:o:honeywell:h2w2per3_firmware:-:::::::*
honeywell	h2w2per3	-	cpe:2.3:h:honeywell:h2w2per3:-:::::::*
honeywell	h2w4per3_firmware	-	cpe:2.3:o:honeywell:h2w4per3_firmware:-:::::::*
honeywell	h2w4per3	-	cpe:2.3:h:honeywell:h2w4per3:-:::::::*
honeywell	h4w2per2_firmware	-	cpe:2.3:o:honeywell:h4w2per2_firmware:-:::::::*
honeywell	h4w2per2	-	cpe:2.3:h:honeywell:h4w2per2:-:::::::*
honeywell	h4w2per3_firmware	-	cpe:2.3:o:honeywell:h4w2per3_firmware:-:::::::*
honeywell	h4w2per3	-	cpe:2.3:h:honeywell:h4w2per3:-:::::::*

Rows per page:

1-10 of 501

CNA Affected

[
  {
    "product": "Honeywell equIP series IP cameras",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "H4L2GR1 prior to 2.420.HW01.33.20190812, HBL2GR1 prior to 2.420.HW01.33.20190812, HCL2G prior to 2.420.HW01.33.20190812, H4W2GR1 prior to 1.000.HW00.21.20190812, H4W2GR2 prior to 1.000.HW00.21.20190812, H4W4GR1 prior to 1.000.HW00.21.20190812, H3W2GR1 prior to 1.000.HW00.21.20190812, H3W2GR2 prior to 1.000.HW00.21.20190812, H3W4GR1 prior to 1.000.HW00.21.20190812, HBW2GR1 prior to 1.000.HW00.21.20190812, HBW4GR1 prior to 1.000.HW00.21.20190812, HBW2GR3 prior to 1.000.HW00.21.20190812, HCW2G prior to 1.000.HW00.21.20190812, HCW4G prior to 1.000.HW00.21.20190812"
      }
    ]
  }
]

References

www.us-cert.gov/ics/advisories/icsa-19-304-02

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

44.5%

JSON

Related for CVE-2019-18228