Sign-up

ID

VAR-202004-0689


CVE

CVE-2019-3944


TITLE

Parrot ANAFI Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2019-015272

DESCRIPTION

Parrot ANAFI is vulnerable to Wi-Fi deauthentication attack, allowing remote and unauthenticated attackers to disconnect drone from controller during mid-flight. Parrot ANAFI There is an unspecified vulnerability in.Service operation interruption (DoS) It may be put into a state. Parrot ANAFI is a drone device

Trust: 2.16

sources: NVD: CVE-2019-3944 // JVNDB: JVNDB-2019-015272 // CNVD: CNVD-2021-27990

IOT TAXONOMY

category:['IoT']sub_category: -

Trust: 0.6

category:['vehicle device']sub_category:drone

Trust: 0.1

sources: OTHER: None // CNVD: CNVD-2021-27990

AFFECTED PRODUCTS

vendor:parrotmodel:anafiscope:ltversion:1.5.0

Trust: 1.6

vendor:parrotmodel:anafiscope: - version: -

Trust: 0.8

sources: CNVD: CNVD-2021-27990 // JVNDB: JVNDB-2019-015272 // NVD: CVE-2019-3944

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-3944
value: HIGH

Trust: 1.0

NVD: JVNDB-2019-015272
value: HIGH

Trust: 0.8

CNVD: CNVD-2021-27990
value: HIGH

Trust: 0.6

CNNVD: CNNVD-202004-021
value: HIGH

Trust: 0.6

nvd@nist.gov: CVE-2019-3944
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

NVD: JVNDB-2019-015272
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

CNVD: CNVD-2021-27990
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

nvd@nist.gov: CVE-2019-3944
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: JVNDB-2019-015272
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2021-27990 // JVNDB: JVNDB-2019-015272 // CNNVD: CNNVD-202004-021 // NVD: CVE-2019-3944

PROBLEMTYPE DATA

problemtype:CWE-276

Trust: 1.8

sources: JVNDB: JVNDB-2019-015272 // NVD: CVE-2019-3944

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202004-021

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202004-021

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-015272

PATCH
title:ANAFIurl:https://www.parrot.com/jp/doron/anafi
Trust: 0.8
title:Patch for Parrot ANAFI has an unspecified vulnerability (CNVD-2021-27990)url:https://www.cnvd.org.cn/patchInfo/show/257916
Trust: 0.6
title:Parrot ANAFI Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=113163
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2021-27990 // 
            
            
            
            JVNDB: JVNDB-2019-015272 // 
            
            
            
            CNNVD: CNNVD-202004-021

EXTERNAL IDS
db:NVDid:CVE-2019-3944
Trust: 3.1
db:TENABLEid:TRA-2019-22
Trust: 2.4
db:JVNDBid:JVNDB-2019-015272
Trust: 0.8
db:CNVDid:CNVD-2021-27990
Trust: 0.6
db:CNNVDid:CNNVD-202004-021
Trust: 0.6
db:OTHERid:NONE
Trust: 0.1
sources:
            
            
            OTHER: None // 
            
            
            
            CNVD: CNVD-2021-27990 // 
            
            
            
            JVNDB: JVNDB-2019-015272 // 
            
            
            
            CNNVD: CNNVD-202004-021 // 
            
            
            
            NVD: CVE-2019-3944

REFERENCES
url:https://www.tenable.com/security/research/tra-2019-22
Trust: 2.4
url:https://nvd.nist.gov/vuln/detail/cve-2019-3944
Trust: 2.0
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-3944
Trust: 0.8
url:https://ieeexplore.ieee.org/abstract/document/10769424
Trust: 0.1
sources:
            
            
            OTHER: None // 
            
            
            
            CNVD: CNVD-2021-27990 // 
            
            
            
            JVNDB: JVNDB-2019-015272 // 
            
            
            
            CNNVD: CNNVD-202004-021 // 
            
            
            
            NVD: CVE-2019-3944

SOURCES
db:OTHERid: - 
db:CNVDid:CNVD-2021-27990
db:JVNDBid:JVNDB-2019-015272
db:CNNVDid:CNNVD-202004-021
db:NVDid:CVE-2019-3944

LAST UPDATE DATE
2025-01-30T20:59:50.656000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2021-27990date:2021-04-14T00:00:00
db:JVNDBid:JVNDB-2019-015272date:2020-04-24T00:00:00
db:CNNVDid:CNNVD-202004-021date:2020-04-15T00:00:00
db:NVDid:CVE-2019-3944date:2024-11-21T04:42:55.037

SOURCES RELEASE DATE
db:CNVDid:CNVD-2021-27990date:2021-04-14T00:00:00
db:JVNDBid:JVNDB-2019-015272date:2020-04-24T00:00:00
db:CNNVDid:CNNVD-202004-021date:2020-04-01T00:00:00
db:NVDid:CVE-2019-3944date:2020-04-01T17:15:14.907