Summary
Detail | |||
---|---|---|---|
Vendor | Honeywell | First view | 2019-10-31 |
Product | hdz302lik Firmware | Last view | 2019-10-31 |
Version | Type | Os | |
Update | |||
Edition | |||
Language | |||
Sofware Edition | |||
Target Software | |||
Target Hardware | |||
Other |
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
CPE Name | Affected CVE |
---|---|
cpe:2.3:o:honeywell:hdz302lik_firmware:-:*:*:*:*:*:*:* | 2 |
cpe:2.3:o:honeywell:hdz302lik_firmware:*:*:*:*:*:*:*:* | 1 |
Related : CVE
Date | Alert | Description | |
---|---|---|---|
7.5 | 2019-10-31 | CVE-2019-18230 | Honeywell equIP and Performance series IP cameras, multiple versions, A vulnerability exists where the affected product allows unauthenticated access to audio streaming over HTTP. |
9.8 | 2019-10-31 | CVE-2019-18226 | Honeywell equIP series and Performance series IP cameras and recorders, A vulnerability exists in the affected products where IP cameras and recorders have a potential replay attack vulnerability as a weak authentication method is retained for compatibility with legacy products. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
50% (1) | CWE-306 | Missing Authentication for Critical Function |
50% (1) | CWE-294 | Authentication Bypass by Capture-replay |