HIGH🇬🇧 English

CVE-2021-39364

CVSS 7.5v3.1pub. 2022-02-24upd. 2024-11-21

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing (for camera control) after ARP cache poisoning has been achieved.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
  • Honeywell Hbw2per1

    HW
    Honeywell
    wszystkie wersje
  • Honeywell Hbw2per1 Firmware

    OS
    Honeywell
    1.000.hw01.3
  • Honeywell Hdzp252di

    HW
    Honeywell
    wszystkie wersje
  • Honeywell Hdzp252di Firmware

    OS
    Honeywell
    1.00.hw02.4
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2021-39363CRITICAL9.8ten sam produkt

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow a video replay attack after ARP cache ...

CVE-2019-18226CRITICAL9.8ten sam produkt

Honeywell equIP series and Performance series IP cameras and recorders, A vulnerability exists in the affected...

CVE-2019-18228HIGH7.5ten sam produkt

Honeywell equIP series IP cameras Multiple equIP Series Cameras, A vulnerability exists in the affected produc...

CVE-2019-18230HIGH7.5ten sam produkt

Honeywell equIP and Performance series IP cameras, multiple versions, A vulnerability exists where the affecte...

CVE-2019-13523MEDIUM5.3ten sam produkt

In Honeywell Performance IP Cameras and Performance NVRs, the integrated web server of the affected devices co...

CVE-2021-39364 — HIGH 7.5 | CVEbaza.pl