7.5 - CVE-2019-18230

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Informations
Name	CVE-2019-18230	First vendor Publication	2019-10-31
Vendor	Cve	Last vendor Modification	2019-11-05

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Overall CVSS Score	7.5
Base Score	7.5	Environmental Score	7.5
impact SubScore	3.6	Temporal Score	7.5
Exploitabality Sub Score	3.9

Attack Vector	Network	Attack Complexity	Low
Privileges Required	None	User Interaction	None
Scope	Unchanged	Confidentiality Impact	High
Integrity Impact	None	Availability Impact	None
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Honeywell equIP and Performance series IP cameras, multiple versions, A vulnerability exists where the affected product allows unauthenticated access to audio streaming over HTTP.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18230

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-306	Missing Authentication for Critical Function (CWE/SANS Top 25)

CPE : Common Platform Enumeration

Type	Description	Count
Os	Honeywell H2W2Gr1 Firmware cpe:2.3:o:honeywell:h2w2gr1_firmware:::::::: cpe:2.3:o:honeywell:h2w2gr1_firmware:-:::::::*	2
Os	Honeywell H3W2Gr1 Firmware cpe:2.3:o:honeywell:h3w2gr1_firmware:::::::: cpe:2.3:o:honeywell:h3w2gr1_firmware:-:::::::*	2
Os	Honeywell H3W2Gr1V Firmware cpe:2.3:o:honeywell:h3w2gr1v_firmware:::::::: cpe:2.3:o:honeywell:h3w2gr1v_firmware:-:::::::*	2
Os	Honeywell H3W2Gr2 Firmware cpe:2.3:o:honeywell:h3w2gr2_firmware:::::::: cpe:2.3:o:honeywell:h3w2gr2_firmware:-:::::::*	2
Os	Honeywell H3W4Gr1 Firmware cpe:2.3:o:honeywell:h3w4gr1_firmware:::::::: cpe:2.3:o:honeywell:h3w4gr1_firmware:-:::::::*	2
Os	Honeywell H3W4Gr1V Firmware cpe:2.3:o:honeywell:h3w4gr1v_firmware:::::::: cpe:2.3:o:honeywell:h3w4gr1v_firmware:-:::::::*	2
Os	Honeywell H4D8Gr1 Firmware cpe:2.3:o:honeywell:h4d8gr1_firmware:::::::: cpe:2.3:o:honeywell:h4d8gr1_firmware:-:::::::*	2
Os	Honeywell H4D8Pr1 Firmware cpe:2.3:o:honeywell:h4d8pr1_firmware::::::::	1
Os	Honeywell H4L2Gr1 Firmware cpe:2.3:o:honeywell:h4l2gr1_firmware:::::::: cpe:2.3:o:honeywell:h4l2gr1_firmware:-:::::::*	2
Os	Honeywell H4L2Gr1V Firmware cpe:2.3:o:honeywell:h4l2gr1v_firmware:::::::: cpe:2.3:o:honeywell:h4l2gr1v_firmware:-:::::::*	2
Os	Honeywell H4L6Gr2 Firmware cpe:2.3:o:honeywell:h4l6gr2_firmware:::::::: cpe:2.3:o:honeywell:h4l6gr2_firmware:-:::::::*	2
Os	Honeywell H4Lggr2 Firmware cpe:2.3:o:honeywell:h4lggr2_firmware::::::::	1
Os	Honeywell H4W2Gr1 Firmware cpe:2.3:o:honeywell:h4w2gr1_firmware:::::::: cpe:2.3:o:honeywell:h4w2gr1_firmware:-:::::::*	2
Os	Honeywell H4W2Gr1V Firmware cpe:2.3:o:honeywell:h4w2gr1v_firmware:::::::: cpe:2.3:o:honeywell:h4w2gr1v_firmware:-:::::::*	2
Os	Honeywell H4W2Gr2 Firmware cpe:2.3:o:honeywell:h4w2gr2_firmware:::::::: cpe:2.3:o:honeywell:h4w2gr2_firmware:-:::::::*	2
Os	Honeywell H4W4Gr1 Firmware cpe:2.3:o:honeywell:h4w4gr1_firmware:::::::: cpe:2.3:o:honeywell:h4w4gr1_firmware:-:::::::*	2
Os	Honeywell H4W4Gr1V Firmware cpe:2.3:o:honeywell:h4w4gr1v_firmware:::::::: cpe:2.3:o:honeywell:h4w4gr1v_firmware:-:::::::*	2
Os	Honeywell Hbd8Gr1 Firmware cpe:2.3:o:honeywell:hbd8gr1_firmware:::::::: cpe:2.3:o:honeywell:hbd8gr1_firmware:-:::::::*	2
Os	Honeywell Hbl2Gr1 Firmware cpe:2.3:o:honeywell:hbl2gr1_firmware::::::::	1
Os	Honeywell Hbl2Gr1V Firmware cpe:2.3:o:honeywell:hbl2gr1v_firmware:::::::: cpe:2.3:o:honeywell:hbl2gr1v_firmware:-:::::::*	2
Os	Honeywell Hbl6Gr2 Firmware cpe:2.3:o:honeywell:hbl6gr2_firmware:::::::: cpe:2.3:o:honeywell:hbl6gr2_firmware:-:::::::*	2
Os	Honeywell Hbw2Gr1 Firmware cpe:2.3:o:honeywell:hbw2gr1_firmware::::::::	1
Os	Honeywell Hbw2Gr1V Firmware cpe:2.3:o:honeywell:hbw2gr1v_firmware:::::::: cpe:2.3:o:honeywell:hbw2gr1v_firmware:-:::::::*	2
Os	Honeywell Hbw2Gr3 Firmware cpe:2.3:o:honeywell:hbw2gr3_firmware::::::::	1
Os	Honeywell Hbw2Gr3V Firmware cpe:2.3:o:honeywell:hbw2gr3v_firmware:::::::: cpe:2.3:o:honeywell:hbw2gr3v_firmware:-:::::::*	2
Os	Honeywell Hbw4Gr1 Firmware cpe:2.3:o:honeywell:hbw4gr1_firmware::::::::	1
Os	Honeywell Hbw4Gr1V Firmware cpe:2.3:o:honeywell:hbw4gr1v_firmware:::::::: cpe:2.3:o:honeywell:hbw4gr1v_firmware:-:::::::*	2
Os	Honeywell Hcd8G Firmware cpe:2.3:o:honeywell:hcd8g_firmware:::::::: cpe:2.3:o:honeywell:hcd8g_firmware:-:::::::*	2
Os	Honeywell Hcl2G Firmware cpe:2.3:o:honeywell:hcl2g_firmware:::::::: cpe:2.3:o:honeywell:hcl2g_firmware:-:::::::*	2
Os	Honeywell Hcl2Gv Firmware cpe:2.3:o:honeywell:hcl2gv_firmware:::::::: cpe:2.3:o:honeywell:hcl2gv_firmware:-:::::::*	2
Os	Honeywell Hcw2G Firmware cpe:2.3:o:honeywell:hcw2g_firmware:::::::: cpe:2.3:o:honeywell:hcw2g_firmware:-:::::::*	2
Os	Honeywell Hcw2Gv Firmware cpe:2.3:o:honeywell:hcw2gv_firmware:::::::: cpe:2.3:o:honeywell:hcw2gv_firmware:-:::::::*	2
Os	Honeywell Hcw4G Firmware cpe:2.3:o:honeywell:hcw4g_firmware:::::::: cpe:2.3:o:honeywell:hcw4g_firmware:-:::::::*	2
Os	Honeywell Hdz302D Firmware cpe:2.3:o:honeywell:hdz302d_firmware:::::::: cpe:2.3:o:honeywell:hdz302d_firmware:-:::::::*	2
Os	Honeywell Hdz302De Firmware cpe:2.3:o:honeywell:hdz302de_firmware:::::::: cpe:2.3:o:honeywell:hdz302de_firmware:-:::::::*	2
Os	Honeywell Hdz302Din Firmware cpe:2.3:o:honeywell:hdz302din_firmware::::::::	1
Os	Honeywell hdz302din-C1 Firmware cpe:2.3:o:honeywell:hdz302din-c1_firmware:::::::: cpe:2.3:o:honeywell:hdz302din-c1_firmware:-:::::::*	2
Os	Honeywell hdz302din-S1 Firmware cpe:2.3:o:honeywell:hdz302din-s1_firmware:::::::: cpe:2.3:o:honeywell:hdz302din-s1_firmware:-:::::::*	2
Os	Honeywell Hdz302Lik Firmware cpe:2.3:o:honeywell:hdz302lik_firmware:::::::: cpe:2.3:o:honeywell:hdz302lik_firmware:-:::::::*	2
Os	Honeywell Hdz302Liw Firmware cpe:2.3:o:honeywell:hdz302liw_firmware:::::::: cpe:2.3:o:honeywell:hdz302liw_firmware:-:::::::*	2
Os	Honeywell Hdzp252Di Firmware cpe:2.3:o:honeywell:hdzp252di_firmware:::::::: cpe:2.3:o:honeywell:hdzp252di_firmware:-:::::::*	2
Os	Honeywell Hdzp304Di Firmware cpe:2.3:o:honeywell:hdzp304di_firmware:::::::: cpe:2.3:o:honeywell:hdzp304di_firmware:-:::::::*	2
Os	Honeywell Hfd5Pr1 Firmware cpe:2.3:o:honeywell:hfd5pr1_firmware::::::::	1
Os	Honeywell Hfd6Gr1 Firmware cpe:2.3:o:honeywell:hfd6gr1_firmware:::::::: cpe:2.3:o:honeywell:hfd6gr1_firmware:-:::::::*	2
Os	Honeywell Hfd8Gr1 Firmware cpe:2.3:o:honeywell:hfd8gr1_firmware:::::::: cpe:2.3:o:honeywell:hfd8gr1_firmware:-:::::::*	2
Os	Honeywell Hm4L8Gr1 Firmware cpe:2.3:o:honeywell:hm4l8gr1_firmware:::::::: cpe:2.3:o:honeywell:hm4l8gr1_firmware:-:::::::*	2
Os	Honeywell Hmbl8Gr1 Firmware cpe:2.3:o:honeywell:hmbl8gr1_firmware:::::::: cpe:2.3:o:honeywell:hmbl8gr1_firmware:-:::::::*	2
Os	Honeywell Hpw2P1 Firmware cpe:2.3:o:honeywell:hpw2p1_firmware:::::::: cpe:2.3:o:honeywell:hpw2p1_firmware:-:::::::*	2

Sources (Detail)

Source	Url
MISC	https://www.us-cert.gov/ics/advisories/icsa-19-304-03

Alert History

If you want to see full details history, please login or register.

Date	Informations
2020-05-23 02:26:54	First insertion

Type	Count
CWE ID(s)	1
CPE ID(s)	88
Sources(s)	1

7.5 - CVE-2019-18230

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Sources (Detail)

Alert History

Global Informations

Open Standards

COMPANY

STANDARDS

RECENT POSTS

MENU