Details of VAR-201910-0897

ID

VAR-201910-0897

CVE

CVE-2019-18226

TITLE

plural Honeywell In product Capture-replay Authentication bypass vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-011475

DESCRIPTION

Honeywell equIP series and Performance series IP cameras and recorders, A vulnerability exists in the affected products where IP cameras and recorders have a potential replay attack vulnerability as a weak authentication method is retained for compatibility with legacy products. Honeywell equIP, etc. are products of American Honeywell (Honeywell) company. Honeywell equIP is an equIP series IP camera product. Honeywell Performance is a Performance series IP camera product. Honeywell Recorders is a Recorders series network video recorder product

Trust: 2.16

sources: NVD: CVE-2019-18226 // JVNDB: JVNDB-2019-011475 // CNVD: CNVD-2020-37482

IOT TAXONOMY

category:

['ICS', 'Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2020-37482

AFFECTED PRODUCTS

vendor:	honeywell	model:	hswb2g1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h2w2gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hfd6gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw8pr2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h3w4gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hdz302lik	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew4per3b	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hepz302w0	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w4per2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hdzp252di	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h3w4gr1v	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hcd8g	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew2per2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hpw2p1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hmbl8gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew2per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w2per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hdz302de	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbd8gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hed2per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hfd8gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hdz302liw	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hcw2gv	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbd2per1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w8pr2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4l2gr1v	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w4gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w2gr2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew4per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h2w4per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hew4per2b	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4d8gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw2gr3v	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w2gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw4pgr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h2w2per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w2per2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h3w2gr2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hm4l8gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw4per1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hdz302din-c1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w4per3	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw4per2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w2gr1v	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbl2gr1v	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hdz302din-s1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw2per1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw2gr1v	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hdzp304di	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4w4gr1v	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hcw4g	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hcl2gv	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbl6gr2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h2w2pc1m	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw4gr1v	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hdz302d	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hcl2g	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4l2gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h3w2gr1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h3w2gr1v	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hbw2per2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hsw2g1	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h4l6gr2	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	hcw2g	scope:	eq	version:	-	Trust: 1.0
vendor:	honeywell	model:	h2w2pc1m	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h2w2per3	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h2w4per3	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h4w2per2	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h4w2per3	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h4w4per2	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h4w4per3	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	h4w8pr2	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	hbd2per1	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	hbw2per1	scope:	-	version:	-	Trust: 0.8
vendor:	honeywell	model:	equip h3w2gr1	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	equip h3w2gr1v	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	equip h2w2gr1	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance h2w2pc1m	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance h2w2per3	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	performance h2w2prv3	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	recorder hen04102	scope:	-	version:	-	Trust: 0.6
vendor:	honeywell	model:	recorder hen04112	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2020-37482 // JVNDB: JVNDB-2019-011475 // NVD: CVE-2019-18226

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-18226
value:	CRITICAL
Trust: 1.0
NVD:	CVE-2019-18226
value:	CRITICAL
Trust: 0.8
CNVD:	CNVD-2020-37482
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201910-1918
value:	CRITICAL
Trust: 0.6

nvd@nist.gov:	CVE-2019-18226
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2020-37482
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2019-18226
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2019-18226
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2020-37482 // JVNDB: JVNDB-2019-011475 // CNNVD: CNNVD-201910-1918 // NVD: CVE-2019-18226

PROBLEMTYPE DATA

problemtype:

CWE-294

Trust: 1.8

sources: JVNDB: JVNDB-2019-011475 // NVD: CVE-2019-18226

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201910-1918

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-201910-1918

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-011475

PATCH

title:	Top Page	url:	https://www.honeywell.com/	Trust: 0.8
title:	Patch for Honeywell equIP series, Performance series IP cameras and Recorders authentication bypass vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/225035	Trust: 0.6
title:	Honeywell equIP series, Performance series IP Camera and Recorders Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=101818	Trust: 0.6

sources: CNVD: CNVD-2020-37482 // JVNDB: JVNDB-2019-011475 // CNNVD: CNNVD-201910-1918

EXTERNAL IDS

db:	NVD	id:	CVE-2019-18226	Trust: 3.0
db:	ICS CERT	id:	ICSA-19-304-04	Trust: 3.0
db:	JVNDB	id:	JVNDB-2019-011475	Trust: 0.8
db:	CNVD	id:	CNVD-2020-37482	Trust: 0.6
db:	AUSCERT	id:	ESB-2019.4069	Trust: 0.6
db:	CNNVD	id:	CNNVD-201910-1918	Trust: 0.6

sources: CNVD: CNVD-2020-37482 // JVNDB: JVNDB-2019-011475 // CNNVD: CNNVD-201910-1918 // NVD: CVE-2019-18226

REFERENCES

url:	https://www.us-cert.gov/ics/advisories/icsa-19-304-04	Trust: 3.0
url:	https://nvd.nist.gov/vuln/detail/cve-2019-18226	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-18226	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/esb-2019.4069/	Trust: 0.6

sources: CNVD: CNVD-2020-37482 // JVNDB: JVNDB-2019-011475 // CNNVD: CNNVD-201910-1918 // NVD: CVE-2019-18226

SOURCES

db:	CNVD	id:	CNVD-2020-37482
db:	JVNDB	id:	JVNDB-2019-011475
db:	CNNVD	id:	CNNVD-201910-1918
db:	NVD	id:	CVE-2019-18226

LAST UPDATE DATE

2024-11-23T22:16:48.425000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2020-37482	date:	2020-07-09T00:00:00
db:	JVNDB	id:	JVNDB-2019-011475	date:	2019-12-26T00:00:00
db:	CNNVD	id:	CNNVD-201910-1918	date:	2020-04-28T00:00:00
db:	NVD	id:	CVE-2019-18226	date:	2024-11-21T04:32:52.597

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2020-37482	date:	2020-07-09T00:00:00
db:	JVNDB	id:	JVNDB-2019-011475	date:	2019-11-08T00:00:00
db:	CNNVD	id:	CNNVD-201910-1918	date:	2019-10-31T00:00:00
db:	NVD	id:	CVE-2019-18226	date:	2019-10-31T22:15:10.800