Details of VAR-201909-1516

ID

VAR-201909-1516

CVE

CVE-2019-13523

TITLE

Honeywell Performance IP Camera and Performance NVR Vulnerable to information disclosure

Trust: 0.8

sources: JVNDB: JVNDB-2019-009883

DESCRIPTION

In Honeywell Performance IP Cameras and Performance NVRs, the integrated web server of the affected devices could allow remote attackers to obtain web configuration data in JSON format for IP cameras and NVRs (Network Video Recorders), which can be accessed without authentication over the network. Affected performance IP Cameras: HBD3PR2,H4D3PRV3,HED3PR3,H4D3PRV2,HBD3PR1,H4W8PR2,HBW8PR2,H2W2PC1M,H2W4PER3,H2W2PER3,HEW2PER3,HEW4PER3B,HBW2PER1,HEW4PER2,HEW4PER2B,HEW2PER2,H4W2PER2,HBW2PER2,H4W2PER3, and HPW2P1. Affected Performance Series NVRs: HEN08104,HEN08144,HEN081124,HEN16104,HEN16144,HEN16184,HEN16204,HEN162244,HEN16284,HEN16304,HEN16384,HEN32104,HEN321124,HEN32204,HEN32284,HEN322164,HEN32304, HEN32384,HEN323164,HEN64204,HEN64304,HEN643164,HEN643324,HEN643484,HEN04103,HEN04113,HEN04123,HEN08103,HEN08113,HEN08123,HEN08143,HEN16103,HEN16123,HEN16143,HEN16163,HEN04103L,HEN08103L,HEN16103L,HEN32103L. Honeywell Performance HEN08104 is a network video recorder (NVR) device. A variety of Honeywell product information disclosure vulnerabilities that an attacker can use to view device configuration information. are all products of Honeywell (Honeywell) in the United States. This vulnerability stems from configuration errors in network systems or products during operation. An unauthorized attacker could exploit the vulnerability to obtain sensitive information of the affected components

Trust: 2.52

sources: NVD: CVE-2019-13523 // JVNDB: JVNDB-2019-009883 // CNVD: CNVD-2019-31998 // IVD: e9bd9395-4886-4e86-ae5d-f3a7c7365e85 // VULHUB: VHN-145378 // VULMON: CVE-2019-13523

IOT TAXONOMY

category:	['ICS', 'Network device']	sub_category:	-	Trust: 0.6
category:	['ICS']	sub_category:	-	Trust: 0.2

sources: IVD: e9bd9395-4886-4e86-ae5d-f3a7c7365e85 // CNVD: CNVD-2019-31998

AFFECTED PRODUCTS

vendor:	honeywell	model:	hen32384	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen08103	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen322164	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hed3pr3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16184	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw8pr2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen321124	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew4per3b	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen08123	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew2per2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hpw2p1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew2per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w2per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen32284	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16163	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen32304	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen08104	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w8pr2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4d3prv2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew4per2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen64304	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h2w4per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen643484	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew4per2b	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen32204	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen08113	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16284	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h2w2per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w2per2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen081124	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen32103l	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16384	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16103l	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16104	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen162244	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16204	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen04123	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16123	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen04103l	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen32104	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw2per1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16103	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen323164	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbd3pr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen64204	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen08143	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbd3pr2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h2w2pc1m	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen04113	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen08144	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16143	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen04103	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen08103l	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen643324	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw2per2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16304	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen643164	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4d3prv3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hen16144	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h2w2pc1m	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h2w2per3	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h2w4per3	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h4d3prv2	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h4d3prv3	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h4w8pr2	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	hbd3pr1	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	hbd3pr2	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	hbw8pr2	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	hed3pr3	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	performance ip series cameras hbd3pr2	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras h4d3prv3	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hed3pr3	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras h4d3prv2	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hbd3pr1	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras h4w8pr2	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hbw8pr2	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras h2w2pc1m	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras h2w4per3	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras h2w2per3	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hew2per3	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hew4per3b	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hbw2per1	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hew4per2	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hew4per2b	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hew2per2	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras h4w2per2	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hbw2per2	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras h4w2per3	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance ip series cameras hpw2p1	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen08104	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen08144	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen081124	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen16104	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen16144	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen16184	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen16204	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen162244	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen16284	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen16304	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen16384	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen32104	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen321124	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen32204	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen32284	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen322164	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen32304	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen32384	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen323164	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen64204	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen64304	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance series nvrs hen643	scope:	-	version:	-	Trust: 0.6
vendor:	hbd3pr2	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	h2w2per3	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hew2per3	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hew4per3b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hbw2per1	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hew4per2	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hew4per2b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hew2per2	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	h4w2per2	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hbw2per2	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	h4w2per3	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	h4d3prv3	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hpw2p1	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen08104	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen08144	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen081124	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16104	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16144	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16184	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16204	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen162244	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16284	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hed3pr3	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16304	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16384	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen32104	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen321124	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen32204	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen32284	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen322164	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen32304	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen32384	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen323164	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	h4d3prv2	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen64204	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen64304	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen643164	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen643324	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen643484	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen04103	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen04113	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen04123	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen08103	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen08113	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hbd3pr1	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen08123	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen08143	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16103	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16123	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16143	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16163	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen04103l	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen08103l	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen16103l	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hen32103l	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	h4w8pr2	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	hbw8pr2	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	h2w2pc1m	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	h2w4per3	model:	-	scope:	eq	version:	-	Trust: 0.2

sources: IVD: e9bd9395-4886-4e86-ae5d-f3a7c7365e85 // CNVD: CNVD-2019-31998 // JVNDB: JVNDB-2019-009883 // NVD: CVE-2019-13523

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-13523
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2019-13523
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2019-31998
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201909-822
value:	MEDIUM
Trust: 0.6
IVD:	e9bd9395-4886-4e86-ae5d-f3a7c7365e85
value:	MEDIUM
Trust: 0.2
VULHUB:	VHN-145378
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2019-13523
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2019-13523
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
CNVD:	CNVD-2019-31998
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	e9bd9395-4886-4e86-ae5d-f3a7c7365e85
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-145378
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2019-13523
baseSeverity:	MEDIUM
baseScore:	5.3
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	LOW
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	1.4
version:	3.1
Trust: 1.0
NVD:	CVE-2019-13523
baseSeverity:	MEDIUM
baseScore:	5.3
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	LOW
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: IVD: e9bd9395-4886-4e86-ae5d-f3a7c7365e85 // CNVD: CNVD-2019-31998 // VULHUB: VHN-145378 // VULMON: CVE-2019-13523 // JVNDB: JVNDB-2019-009883 // CNNVD: CNNVD-201909-822 // NVD: CVE-2019-13523

PROBLEMTYPE DATA

problemtype:	CWE-200	Trust: 1.9
problemtype:	CWE-306	Trust: 1.0

sources: VULHUB: VHN-145378 // JVNDB: JVNDB-2019-009883 // NVD: CVE-2019-13523

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201909-822

TYPE

access control error

Trust: 0.6

sources: CNNVD: CNNVD-201909-822

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-009883

PATCH

title:	Top Page	url:	https://www.honeywell.com/	Trust: 0.8
title:	Patches for multiple Honeywell product information disclosure vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/180937	Trust: 0.6
title:	Multiple Honeywell Product security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=98353	Trust: 0.6

sources: CNVD: CNVD-2019-31998 // JVNDB: JVNDB-2019-009883 // CNNVD: CNNVD-201909-822

EXTERNAL IDS

db:	NVD	id:	CVE-2019-13523	Trust: 3.4
db:	ICS CERT	id:	ICSA-19-260-03	Trust: 3.2
db:	CNNVD	id:	CNNVD-201909-822	Trust: 0.9
db:	CNVD	id:	CNVD-2019-31998	Trust: 0.8
db:	JVNDB	id:	JVNDB-2019-009883	Trust: 0.8
db:	AUSCERT	id:	ESB-2019.3560	Trust: 0.6
db:	IVD	id:	E9BD9395-4886-4E86-AE5D-F3A7C7365E85	Trust: 0.2
db:	VULHUB	id:	VHN-145378	Trust: 0.1
db:	VULMON	id:	CVE-2019-13523	Trust: 0.1

REFERENCES

url:	https://www.us-cert.gov/ics/advisories/icsa-19-260-03	Trust: 3.2
url:	https://nvd.nist.gov/vuln/detail/cve-2019-13523	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-13523	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/esb-2019.3560/	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/200.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/167179	Trust: 0.1

sources: CNVD: CNVD-2019-31998 // VULHUB: VHN-145378 // VULMON: CVE-2019-13523 // JVNDB: JVNDB-2019-009883 // CNNVD: CNNVD-201909-822 // NVD: CVE-2019-13523

SOURCES

db:	IVD	id:	e9bd9395-4886-4e86-ae5d-f3a7c7365e85
db:	CNVD	id:	CNVD-2019-31998
db:	VULHUB	id:	VHN-145378
db:	VULMON	id:	CVE-2019-13523
db:	JVNDB	id:	JVNDB-2019-009883
db:	CNNVD	id:	CNNVD-201909-822
db:	NVD	id:	CVE-2019-13523

LAST UPDATE DATE

2024-11-23T22:44:49.638000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2019-31998	date:	2019-09-19T00:00:00
db:	VULHUB	id:	VHN-145378	date:	2019-10-09T00:00:00
db:	VULMON	id:	CVE-2019-13523	date:	2019-10-09T00:00:00
db:	JVNDB	id:	JVNDB-2019-009883	date:	2019-10-02T00:00:00
db:	CNNVD	id:	CNNVD-201909-822	date:	2021-10-29T00:00:00
db:	NVD	id:	CVE-2019-13523	date:	2024-11-21T04:25:04.220

SOURCES RELEASE DATE

db:	IVD	id:	e9bd9395-4886-4e86-ae5d-f3a7c7365e85	date:	2019-09-19T00:00:00
db:	CNVD	id:	CNVD-2019-31998	date:	2019-09-19T00:00:00
db:	VULHUB	id:	VHN-145378	date:	2019-09-26T00:00:00
db:	VULMON	id:	CVE-2019-13523	date:	2019-09-26T00:00:00
db:	JVNDB	id:	JVNDB-2019-009883	date:	2019-10-02T00:00:00
db:	CNNVD	id:	CNNVD-201909-822	date:	2019-09-17T00:00:00
db:	NVD	id:	CVE-2019-13523	date:	2019-09-26T16:15:11.067