7.5

CVE-2019-18228

Honeywell equIP series IP cameras Multiple equIP Series Cameras, A vulnerability exists in the affected products where a specially crafted HTTP packet request could result in a denial of service.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HoneywellH2w2pc1m Firmware Version-
   HoneywellH2w2pc1m Version-
HoneywellH2w2per3 Firmware Version-
   HoneywellH2w2per3 Version-
HoneywellH2w4per3 Firmware Version-
   HoneywellH2w4per3 Version-
HoneywellH4w2per2 Firmware Version-
   HoneywellH4w2per2 Version-
HoneywellH4w2per3 Firmware Version-
   HoneywellH4w2per3 Version-
HoneywellH4w4per2 Firmware Version-
   HoneywellH4w4per2 Version-
HoneywellH4w4per3 Firmware Version-
   HoneywellH4w4per3 Version-
HoneywellH4w8pr2 Firmware Version-
   HoneywellH4w8pr2 Version-
HoneywellHbd2per1 Firmware Version-
   HoneywellHbd2per1 Version-
HoneywellHbw2per1 Firmware Version-
   HoneywellHbw2per1 Version-
HoneywellHbw2per2 Firmware Version-
   HoneywellHbw2per2 Version-
HoneywellHbw4per1 Firmware Version-
   HoneywellHbw4per1 Version-
HoneywellHbw4per2 Firmware Version-
   HoneywellHbw4per2 Version-
HoneywellHbw4pgr1 Firmware Version-
   HoneywellHbw4pgr1 Version-
HoneywellHbw8pr2 Firmware Version-
   HoneywellHbw8pr2 Version-
HoneywellHed2per3 Firmware Version-
   HoneywellHed2per3 Version-
HoneywellHew2per2 Firmware Version-
   HoneywellHew2per2 Version-
HoneywellHew2per3 Firmware Version-
   HoneywellHew2per3 Version-
HoneywellHew4per2b Firmware Version-
   HoneywellHew4per2b Version-
HoneywellHew4per3 Firmware Version-
   HoneywellHew4per3 Version-
HoneywellHew4per3b Firmware Version-
   HoneywellHew4per3b Version-
HoneywellHew4per2b Firmware Version-
   HoneywellHew4per2b Version-
HoneywellHdzp252di Firmware Version-
   HoneywellHdzp252di Version-
HoneywellHdzp304di Firmware Version-
   HoneywellHdzp304di Version-
HoneywellHpw2p1 Firmware Version-
   HoneywellHpw2p1 Version-
HoneywellH2w2gr1 Firmware Version-
   HoneywellH2w2gr1 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.55% 0.654
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://www.us-cert.gov/ics/advisories/icsa-19-304-02
Third Party Advisory
US Government Resource