CVE-2019-18228

{"id": "CVE-2019-18228", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2019-10-31T22:15:10.940", "references": [{"url": "https://www.us-cert.gov/ics/advisories/icsa-19-304-02", "tags": ["Third Party Advisory", "US Government Resource"], "source": "ics-cert@hq.dhs.gov"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}, {"type": "Secondary", "source": "ics-cert@hq.dhs.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Honeywell equIP series IP cameras Multiple equIP Series Cameras, A vulnerability exists in the affected products where a specially crafted HTTP packet request could result in a denial of service."}, {"lang": "es", "value": "En las c\u00e1maras IP serie equIP de Honeywell Multiple equIP Series Cameras, una vulnerabilidad se presenta en los productos afectados donde una petici\u00f3n de paquete HTTP especialmente dise\u00f1ada podr\u00eda resultar en una denegaci\u00f3n de servicio."}], "lastModified": "2020-09-29T00:14:31.393", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:h2w2pc1m_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94A1FD71-3A35-4175-9C80-8965F3A59D9F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:h2w2pc1m:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BA1EF7CE-9FA3-45DA-9047-052E27E16965"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:h2w2per3_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6CA4E13F-70AA-46BB-BF1D-B3797D3BD302"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:h2w2per3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DBF28324-68A7-4862-A881-1187A68CA97E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:h2w4per3_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4FD65833-D4DA-42D4-904A-0CC96E53E7D7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:h2w4per3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5AF4F78E-E768-4D54-A9A1-2C24FC49CB08"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:h4w2per2_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B10341D2-EF85-4067-A470-A263773DB8F7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:h4w2per2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "ACBD1C35-BC9F-471B-AFE9-56F2C0D31251"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:h4w2per3_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47754C91-13A3-4096-A9D5-5F1C8BB996F2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:h4w2per3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1DD7DF8D-F530-4C08-8ADB-16A30A411DB1"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:h4w4per2_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6A7716A9-3CBB-4246-898E-017466E0E089"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:h4w4per2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "71EBB5A3-0373-4500-BE46-8E1586AF25D3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:h4w4per3_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A34A7616-3680-4991-B5F9-1C1D2B15E5B4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:h4w4per3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BC6C4016-8FE4-4DBA-999A-B25ADBD128AA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:h4w8pr2_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1B7E0C1-B599-47CA-8D71-E5A0C5AAFE1A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:h4w8pr2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "717A6F11-8EA5-4F9A-9F78-8E51FBFB73A6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hbd2per1_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "877998DF-3C43-4ADF-951C-7F10307A08BA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hbd2per1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7DE7E815-4B03-484C-9F30-11B09F0236B6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hbw2per1_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "88C5B464-E5DD-4095-98F4-8695F7722C67"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hbw2per1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B8CA4A19-03EC-4142-B847-0EC8C14AC9D9"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hbw2per2_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27BBC2DE-1191-43D8-8898-AE832157D689"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hbw2per2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F272578E-2BF9-4827-8838-BF2441F7CD9C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hbw4per1_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57413208-1D8E-486D-B2F5-4F76A9C7B311"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hbw4per1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4310E58D-ABEF-4AC3-A642-71C4E5FCAAB8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hbw4per2_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7787C9EE-9849-4BF7-930B-47A5C2015CE2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hbw4per2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "334EE3EB-61FC-413B-B5DE-5B712ECEDF59"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hbw4pgr1_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82C22316-FD53-4961-80CA-F18E13D4FF1A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hbw4pgr1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "ED7D3D6F-CB5B-4E76-A290-991A717CB1CB"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hbw8pr2_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB898789-B3E5-49BB-91B8-10AA0D2056CE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hbw8pr2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "687F3108-76C3-4F22-8321-59A849017886"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hed2per3_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A0E10F8-5ADF-4BD3-8660-9971A58307D8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hed2per3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D142CDFC-DB46-4765-8A71-25E0824A2322"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hew2per2_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FC032CC-68BE-4003-969E-A2AC07835D82"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hew2per2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6285BB52-C08F-4CBB-A03B-385B980A3420"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hew2per3_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "996AF0FE-AF0E-479F-8301-E55C42EE3E6B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hew2per3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "93D344FD-0DED-4017-B339-CA3BE5E201C7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hew4per2b_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC835EA6-56F0-4C62-9799-D8A9C661271B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hew4per2b:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FA9106C1-B426-497F-835E-F0CF53139573"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hew4per3_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0457FAB2-D9D1-4897-874A-B7E8DB563278"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hew4per3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3C34DF44-453D-4274-B393-D1FA8A9DE857"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hew4per3b_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9032E95-1D90-497A-A0F1-A5A3221FDF7F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hew4per3b:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FFF24084-97F9-4645-9C75-824217FCE8B7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hew4per2b_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC835EA6-56F0-4C62-9799-D8A9C661271B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hew4per2b:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FA9106C1-B426-497F-835E-F0CF53139573"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hdzp252di_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6A0ADC6-33F6-44C5-8CD5-8F6ACE685D87"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hdzp252di:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AEC68AC5-197E-4A0F-A055-4800CDA24E66"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hdzp304di_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "766374A2-189C-4D2B-8329-D115717014BE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hdzp304di:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B3123143-9544-45B6-81ED-84E3ECE1B905"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:hpw2p1_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D70E51AC-7B3C-4FD3-BBDF-7F42ACD86B48"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:hpw2p1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "414E3927-B8A6-4E57-972A-27DA0163167E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honeywell:h2w2gr1_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E3B9BA6-960E-4AF0-A072-DC5E6D9F1541"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honeywell:h2w2gr1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "35D3C658-893D-49F6-B17A-912B58D87B09"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ics-cert@hq.dhs.gov"}