Details of VAR-201909-1498

ID

VAR-201909-1498

CVE

CVE-2019-12223

TITLE

Hanwah Techwin SRN-472s and SRN-x Device buffer error vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-008962

DESCRIPTION

An issue was discovered in NVR WebViewer on Hanwah Techwin SRN-472s 1.07_190502 devices, and other SRN-x devices before 2019-05-03. A system crash and reboot can be achieved by submitting a long username in excess of 117 characters. The username triggers a buffer overflow in the main process controlling operation of the DVR system, rendering services unavailable during the reboot operation. A repeated attack affects availability as long as the attacker has network access to the device. Hanwah Techwin SRN-472s and SRN-x The device contains a buffer error vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Hanwah Techwin SRN-472s is a network video recorder produced by Hanwah Techwin in Korea. NVR WebViewer is a set of web-based surveillance video management system running in it. The NVR WebViewer in Hanwah Techwin SRN-472s version 1.07_190502 and other SRN series products (before 2019-05-03) has a buffer error vulnerability. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc

Trust: 1.71

sources: NVD: CVE-2019-12223 // JVNDB: JVNDB-2019-008962 // VULHUB: VHN-143948

AFFECTED PRODUCTS

vendor:	hanwha security	model:	srn-873s	scope:	lt	version:	2019-05-03	Trust: 1.0
vendor:	hanwha security	model:	srn-472s	scope:	eq	version:	1.07_190502	Trust: 1.0
vendor:	hanwha security	model:	srn-1673s	scope:	lt	version:	2019-05-03	Trust: 1.0
vendor:	hanwha techwin	model:	srn-1673s	scope:	eq	version:	2019/05/03	Trust: 0.8
vendor:	hanwha techwin	model:	srn-472s	scope:	eq	version:	1.07_190502	Trust: 0.8
vendor:	hanwha techwin	model:	srn-873s	scope:	eq	version:	2019/05/03	Trust: 0.8

sources: JVNDB: JVNDB-2019-008962 // NVD: CVE-2019-12223

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-12223
value:	HIGH
Trust: 1.0
NVD:	CVE-2019-12223
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201909-213
value:	HIGH
Trust: 0.6
VULHUB:	VHN-143948
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2019-12223
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-143948
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2019-12223
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-143948 // JVNDB: JVNDB-2019-008962 // CNNVD: CNNVD-201909-213 // NVD: CVE-2019-12223

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-143948 // JVNDB: JVNDB-2019-008962 // NVD: CVE-2019-12223

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201909-213

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-201909-213

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-008962

PATCH

title:	SRN-472S	url:	https://www.hanwha-security.com/en/products/video-recorder/nvr/ch4/SRN-472S/overview/	Trust: 0.8
title:	Hanwah Techwin SRN-472s and other SRN Series products NVR WebViewer Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=97971	Trust: 0.6

sources: JVNDB: JVNDB-2019-008962 // CNNVD: CNNVD-201909-213

EXTERNAL IDS

db:	NVD	id:	CVE-2019-12223	Trust: 2.5
db:	JVNDB	id:	JVNDB-2019-008962	Trust: 0.8
db:	CNNVD	id:	CNNVD-201909-213	Trust: 0.7
db:	VULHUB	id:	VHN-143948	Trust: 0.1

sources: VULHUB: VHN-143948 // JVNDB: JVNDB-2019-008962 // CNNVD: CNNVD-201909-213 // NVD: CVE-2019-12223

REFERENCES

url:	https://gist.github.com/dustinnoe/66f91573a0080c9fb2c21819d8805a82	Trust: 2.5
url:	https://www.hanwha-security.com/en/products/video-recorder/nvr/ch4/srn-472s/overview/	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2019-12223	Trust: 1.4
url:	https://medium.com/%40noe.dustin/samsung-webviewer-remote-dos-vulberability-cve-2019-12223-5f4afbc83fbd	Trust: 1.0
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-12223	Trust: 0.8
url:	https://medium.com/@noe.dustin/samsung-webviewer-remote-dos-vulberability-cve-2019-12223-5f4afbc83fbd	Trust: 0.7

sources: VULHUB: VHN-143948 // JVNDB: JVNDB-2019-008962 // CNNVD: CNNVD-201909-213 // NVD: CVE-2019-12223

SOURCES

db:	VULHUB	id:	VHN-143948
db:	JVNDB	id:	JVNDB-2019-008962
db:	CNNVD	id:	CNNVD-201909-213
db:	NVD	id:	CVE-2019-12223

LAST UPDATE DATE

2024-11-23T22:05:59.643000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-143948	date:	2019-09-06T00:00:00
db:	JVNDB	id:	JVNDB-2019-008962	date:	2019-09-10T00:00:00
db:	CNNVD	id:	CNNVD-201909-213	date:	2019-09-09T00:00:00
db:	NVD	id:	CVE-2019-12223	date:	2024-11-21T04:22:27.613

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-143948	date:	2019-09-05T00:00:00
db:	JVNDB	id:	JVNDB-2019-008962	date:	2019-09-10T00:00:00
db:	CNNVD	id:	CNNVD-201909-213	date:	2019-09-05T00:00:00
db:	NVD	id:	CVE-2019-12223	date:	2019-09-05T15:15:11.783