admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2019/13xxx/CVE-2019-13523.json

243 lines
12 KiB
JSON
Raw Normal View History

"-Synchronized-Data."
2019-09-26 16:00:59 +00:00
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2019-13523",
"ASSIGNER": "ics-cert@hq.dhs.gov",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Honeywell",
"product": {
"product_data": [
{
"product_name": "Performance IP Cameras",
"version": {
"version_data": [
{
"version_value": "HBD3PR2"
},
{
"version_value": "H4D3PRV3"
},
{
"version_value": "HED3PR3"
},
{
"version_value": "H4D3PRV2"
},
{
"version_value": "HBD3PR1"
},
{
"version_value": "H4W8PR2"
},
{
"version_value": "HBW8PR2"
},
{
"version_value": "H2W2PC1M"
},
{
"version_value": "H2W4PER3"
},
{
"version_value": "H2W2PER3"
},
{
"version_value": "HEW2PER3"
},
{
"version_value": "HEW4PER3B"
},
{
"version_value": "HBW2PER1"
},
{
"version_value": "HEW4PER2"
},
{
"version_value": "HEW4PER2B"
},
{
"version_value": "HEW2PER2"
},
{
"version_value": "H4W2PER2"
},
{
"version_value": "HBW2PER2"
},
{
"version_value": "H4W2PER3"
},
{
"version_value": "HPW2P1"
}
]
}
},
{
"product_name": "Performance NVRs",
"version": {
"version_data": [
{
"version_value": "HEN08104"
},
{
"version_value": "HEN08144"
},
{
"version_value": "HEN081124"
},
{
"version_value": "HEN16104"
},
{
"version_value": "HEN16144"
},
{
"version_value": "HEN16184"
},
{
"version_value": "HEN16204"
},
{
"version_value": "HEN162244"
},
{
"version_value": "HEN16284"
},
{
"version_value": "HEN16304"
},
{
"version_value": "HEN16384"
},
{
"version_value": "HEN32104"
},
{
"version_value": "HEN321124"
},
{
"version_value": "HEN32204"
},
{
"version_value": "HEN32284"
},
{
"version_value": "HEN322164"
},
{
"version_value": "HEN32304"
},
{
"version_value": "HEN32384"
},
{
"version_value": "HEN323164"
},
{
"version_value": "HEN64204"
},
{
"version_value": "HEN64304"
},
{
"version_value": "HEN643164"
},
{
"version_value": "HEN643324"
},
{
"version_value": "HEN643484"
},
{
"version_value": "HEN04103"
},
{
"version_value": "HEN04113"
},
{
"version_value": "HEN04123"
},
{
"version_value": "HEN08103"
},
{
"version_value": "HEN08113"
},
{
"version_value": "HEN08123"
},
{
"version_value": "HEN08143"
},
{
"version_value": "HEN16103"
},
{
"version_value": "HEN16123"
},
{
"version_value": "HEN16143"
},
{
"version_value": "HEN16163"
},
{
"version_value": "HEN04103L"
},
{
"version_value": "HEN08103L"
},
{
"version_value": "HEN16103L"
},
{
"version_value": "HEN32103L"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "INFORMATION EXPOSURE CWE-200"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://www.us-cert.gov/ics/advisories/icsa-19-260-03",
"url": "https://www.us-cert.gov/ics/advisories/icsa-19-260-03"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Honeywell Performance IP Cameras and Performance NVRs, the integrated web server of the affected devices could allow remote attackers to obtain web configuration data in JSON format for IP cameras and NVRs (Network Video Recorders), which can be accessed without authentication over the network. Affected performance IP Cameras: HBD3PR2,H4D3PRV3,HED3PR3,H4D3PRV2,HBD3PR1,H4W8PR2,HBW8PR2,H2W2PC1M,H2W4PER3,H2W2PER3,HEW2PER3,HEW4PER3B,HBW2PER1,HEW4PER2,HEW4PER2B,HEW2PER2,H4W2PER2,HBW2PER2,H4W2PER3, and HPW2P1. Affected Performance Series NVRs: HEN08104,HEN08144,HEN081124,HEN16104,HEN16144,HEN16184,HEN16204,HEN162244,HEN16284,HEN16304,HEN16384,HEN32104,HEN321124,HEN32204,HEN32284,HEN322164,HEN32304, HEN32384,HEN323164,HEN64204,HEN64304,HEN643164,HEN643324,HEN643484,HEN04103,HEN04113,HEN04123,HEN08103,HEN08113,HEN08123,HEN08143,HEN16103,HEN16123,HEN16143,HEN16163,HEN04103L,HEN08103L,HEN16103L,HEN32103L."
}
]
}
}
Reference in New Issue Copy Permalink