Search criteria
16 vulnerabilities found for xnv-8082r_firmware by hanwhavision
CVE-2025-8075 (GCVE-0-2025-8075)
Vulnerability from nvd – Published: 2025-12-26 04:31 – Updated: 2025-12-26 16:01
VLAI
Title
Improper Input Validation
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered that validation of incoming XML format request messages is inadequate. This vulnerability could allow an attacker to XSS on the user's browser. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-20 - Improper Input Validation
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | QNV-C8012 |
Affected:
Prior to version 2.22.05
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-8075",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T16:01:07.031195Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T16:01:16.611Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "QNV-C8012",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 2.22.05"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered that validation of incoming XML format request messages is inadequate. This vulnerability could allow an attacker to XSS on the user\u0027s browser. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered that validation of incoming XML format request messages is inadequate. This vulnerability could allow an attacker to XSS on the user\u0027s browser. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-153",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-153 Input Data Manipulation"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:31:38.718Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Improper Input Validation",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-8075",
"datePublished": "2025-12-26T04:31:38.718Z",
"dateReserved": "2025-07-23T06:07:30.973Z",
"dateUpdated": "2025-12-26T16:01:16.611Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-52601 (GCVE-0-2025-52601)
Vulnerability from nvd – Published: 2025-12-26 04:29 – Updated: 2025-12-26 19:27
VLAI
Title
Hardcoding sensitive information
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-321 - Use of Hard-coded Cryptographic Key
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | Device Manager |
Affected:
prior to version 2.9.3.1
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-52601",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T19:27:38.620344Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T19:27:44.838Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Device Manager",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "prior to version 2.9.3.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-116",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-116 Excavation"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-321",
"description": "CWE-321: Use of Hard-coded Cryptographic Key",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:29:25.830Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Hardcoding sensitive information",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-52601",
"datePublished": "2025-12-26T04:29:25.830Z",
"dateReserved": "2025-06-18T07:10:49.611Z",
"dateUpdated": "2025-12-26T19:27:44.838Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-52600 (GCVE-0-2025-52600)
Vulnerability from nvd – Published: 2025-12-26 04:20 – Updated: 2025-12-26 14:50
VLAI
Title
Improper Input Validation
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the user's host PC.The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-20 - Improper Input Validation
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | QNV-C8012 |
Affected:
Prior to version 2.22.05
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-52600",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T14:42:11.310664Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T14:50:40.099Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "QNV-C8012",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 2.22.05"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003e\n\n\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the user\u0027s host PC.The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n\u003cbr\u003e\u003c/div\u003e\u003c/div\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the user\u0027s host PC.The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-153",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-153 Input Data Manipulation"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "HIGH",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "PASSIVE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:20:17.014Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Improper Input Validation",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-52600",
"datePublished": "2025-12-26T04:20:17.014Z",
"dateReserved": "2025-06-18T07:10:49.611Z",
"dateUpdated": "2025-12-26T14:50:40.099Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-52599 (GCVE-0-2025-52599)
Vulnerability from nvd – Published: 2025-12-26 04:12 – Updated: 2025-12-26 15:15
VLAI
Title
Inadequate account permissions management
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-269 - Improper Privilege Management
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | QNV-C8012 |
Affected:
Prior to version 2.22.05
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-52599",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T15:12:40.665556Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T15:15:17.385Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "QNV-C8012",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 2.22.05"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n\u003cbr\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-122",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-122 Privilege Abuse"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-269",
"description": "CWE-269 Improper Privilege Management",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:12:37.550Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Inadequate account permissions management",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-52599",
"datePublished": "2025-12-26T04:12:37.550Z",
"dateReserved": "2025-06-18T07:10:49.610Z",
"dateUpdated": "2025-12-26T15:15:17.385Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-52598 (GCVE-0-2025-52598)
Vulnerability from nvd – Published: 2025-12-26 04:07 – Updated: 2025-12-26 15:15
VLAI
Title
Insufficient certificate validation
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has found a flaw that camera's client service does not perform certificate validation. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-295 - Improper Certificate Validation
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | QNV-C8012 |
Affected:
Prior to version 2.22.05
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-52598",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T15:12:31.184142Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T15:15:22.694Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "QNV-C8012",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 2.22.05"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has found a flaw that camera\u0027s client service does not perform certificate validation. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n\u003cbr\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has found a flaw that camera\u0027s client service does not perform certificate validation. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-22",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-22 Exploiting Trust in Client"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-295",
"description": "CWE-295 Improper Certificate Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:07:19.958Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Insufficient certificate validation",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-52598",
"datePublished": "2025-12-26T04:07:19.958Z",
"dateReserved": "2025-06-18T07:10:49.610Z",
"dateUpdated": "2025-12-26T15:15:22.694Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2023-5038 (GCVE-0-2023-5038)
Vulnerability from nvd – Published: 2024-06-25 02:14 – Updated: 2024-08-02 07:44
VLAI
Title
Unauthenticated DoS
Summary
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on the camera. An attacker runs a crafted URL, nobody can access the web management page of the camera. and must manually restart the device or re-power it. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.hanwhavision.com/wp-content/uploads/2… | vendor-advisory |
Impacted products
46 products
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | A-Series, Q-Series, PNM-series Camera |
Affected:
Prior to version 1.41.16, Prior to version 2.22.00
|
|
| hanwhavision | ano-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l6022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l6082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ane-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l6082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ane-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l7082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-c9022rv |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9000qb |
Affected:
0 , < 2.22.01
(custom)
cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-7002vd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-8082vt |
Affected:
0 , < 2.22.00
(custom)
cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9002vq |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9022v |
Affected:
0 , < 2.22.00
(custom)
cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9031rv |
Affected:
0 , < 2.22.01
(custom)
cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084qz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084rqz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9085rqz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084qz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084rqz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9085rqz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9322vqp |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-7082rvd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-12082rvd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6011 |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6021 |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6032r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:* |
Date Public
2024-06-25 02:05
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-c9022rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9000qb",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7002vd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-8082vt",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9002vq",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9022v",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9031rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9322vqp",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-12082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6011",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6021",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-c9022rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9000qb",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7002vd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-8082vt",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9002vq",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9022v",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9031rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9322vqp",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-12082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6011",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6021",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-5038",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-06-26T16:44:21.978973Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-26T23:04:59.868Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T07:44:53.791Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2024/06/Camera-Vulnerability-Report-CVE-2023-5037-5038.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "A-Series, Q-Series, PNM-series Camera",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 1.41.16, Prior to version 2.22.00"
}
]
}
],
"datePublic": "2024-06-25T02:05:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\n\n\u003cdiv\u003e\u003cdiv\u003ebadmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on the camera. An attacker runs a crafted URL, nobody can access the web management page of the camera. and must manually restart the device or re-power it. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n"
}
],
"value": "badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on the camera. An attacker runs a crafted URL, nobody can access the web management page of the camera. and must manually restart the device or re-power it. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-703",
"description": "CWE-703: Improper Check or Handling of Exceptional Conditions",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-248",
"description": "CWE-248: Uncaught Exception",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-25T02:14:06.610Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"tags": [
"vendor-advisory"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2024/06/Camera-Vulnerability-Report-CVE-2023-5037-5038.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Unauthenticated DoS",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2023-5038",
"datePublished": "2024-06-25T02:14:06.610Z",
"dateReserved": "2023-09-18T06:00:29.464Z",
"dateUpdated": "2024-08-02T07:44:53.791Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2023-5037 (GCVE-0-2023-5037)
Vulnerability from nvd – Published: 2023-11-13 07:42 – Updated: 2024-08-02 07:44
VLAI
Title
Authenticated Command Injection
Summary
badmonkey, a Security Researcher has found a flaw that allows for a authenticated command injection on the camera. An attacker could inject malicious into request packets to execute command. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.hanwhavision.com/wp-content/uploads/2… | vendor-advisory |
Impacted products
46 products
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | A-Series, Q-Series, PNM-series Camera |
Affected:
Prior to version 1.41.16;Prior to version 2.22.00;
|
|
| hanwhavision | ano-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l6022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l6082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ane-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l6082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ane-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l7082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-c9022rv |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9000qb |
Affected:
0 , < 2.22.01
(custom)
cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-7002vd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-8082vt |
Affected:
0 , < 2.22.00
(custom)
cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9002vq |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9022v |
Affected:
0 , < 2.22.00
(custom)
cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9031rv |
Affected:
0 , < 2.22.01
(custom)
cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084qz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084rqz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9085rqz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084qz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084rqz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9085rqz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9322vqp |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-7082rvd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-12082rvd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6011 |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6021 |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6032r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:* |
Date Public
2024-06-25 02:03
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-c9022rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9000qb",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7002vd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-8082vt",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9002vq",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9022v",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9031rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9322vqp",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-12082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6011",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6021",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-5037",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-06-26T23:04:45.931319Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-26T23:04:52.824Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T07:44:53.823Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2024/06/Camera-Vulnerability-Report-CVE-2023-5037-5038.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "A-Series, Q-Series, PNM-series Camera",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 1.41.16;Prior to version 2.22.00;"
}
]
}
],
"datePublic": "2024-06-25T02:03:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\n\n\u003cdiv\u003e\u003cdiv\u003ebadmonkey, a Security Researcher has found a flaw that allows for a authenticated command injection on the camera. An attacker could inject malicious into request packets to execute command. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n"
}
],
"value": "badmonkey, a Security Researcher has found a flaw that allows for a authenticated command injection on the camera. An attacker could inject malicious into request packets to execute command. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-88",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-88 OS Command Injection"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"privilegesRequired": "HIGH",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "LOW",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-25T02:04:22.363Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"tags": [
"vendor-advisory"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2024/06/Camera-Vulnerability-Report-CVE-2023-5037-5038.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Authenticated Command Injection",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2023-5037",
"datePublished": "2023-11-13T07:42:00.337Z",
"dateReserved": "2023-09-18T05:54:35.205Z",
"dateUpdated": "2024-08-02T07:44:53.823Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2023-31994 (GCVE-0-2023-31994)
Vulnerability from nvd – Published: 2023-05-23 00:00 – Updated: 2025-01-17 16:42
VLAI
Summary
Certain Hanwha products are vulnerable to Denial of Service (DoS). ck vector is: When an empty UDP packet is sent to the listening service, the service thread results in a non-functional service (DoS) via WS Discovery and Hanwha proprietary discovery services. This affects IP Camera ANE-L7012R 1.41.01 and IP Camera XNV-9082R 2.10.02.
Severity
5.3 (Medium)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T15:03:28.511Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2023/04/Camera-Vulnerability-Report.pdf"
},
{
"tags": [
"x_transferred"
],
"url": "https://hanwhavisionamerica.com/download/50042/"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-31994",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-01-17T16:42:01.240259Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-noinfo Not enough information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-01-17T16:42:07.446Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Certain Hanwha products are vulnerable to Denial of Service (DoS). ck vector is: When an empty UDP packet is sent to the listening service, the service thread results in a non-functional service (DoS) via WS Discovery and Hanwha proprietary discovery services. This affects IP Camera ANE-L7012R 1.41.01 and IP Camera XNV-9082R 2.10.02."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-05-30T00:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2023/04/Camera-Vulnerability-Report.pdf"
},
{
"url": "https://hanwhavisionamerica.com/download/50042/"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2023-31994",
"datePublished": "2023-05-23T00:00:00.000Z",
"dateReserved": "2023-04-29T00:00:00.000Z",
"dateUpdated": "2025-01-17T16:42:07.446Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-8075 (GCVE-0-2025-8075)
Vulnerability from cvelistv5 – Published: 2025-12-26 04:31 – Updated: 2025-12-26 16:01
VLAI
Title
Improper Input Validation
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered that validation of incoming XML format request messages is inadequate. This vulnerability could allow an attacker to XSS on the user's browser. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-20 - Improper Input Validation
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | QNV-C8012 |
Affected:
Prior to version 2.22.05
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-8075",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T16:01:07.031195Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T16:01:16.611Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "QNV-C8012",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 2.22.05"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered that validation of incoming XML format request messages is inadequate. This vulnerability could allow an attacker to XSS on the user\u0027s browser. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered that validation of incoming XML format request messages is inadequate. This vulnerability could allow an attacker to XSS on the user\u0027s browser. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-153",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-153 Input Data Manipulation"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:31:38.718Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Improper Input Validation",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-8075",
"datePublished": "2025-12-26T04:31:38.718Z",
"dateReserved": "2025-07-23T06:07:30.973Z",
"dateUpdated": "2025-12-26T16:01:16.611Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-52601 (GCVE-0-2025-52601)
Vulnerability from cvelistv5 – Published: 2025-12-26 04:29 – Updated: 2025-12-26 19:27
VLAI
Title
Hardcoding sensitive information
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-321 - Use of Hard-coded Cryptographic Key
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | Device Manager |
Affected:
prior to version 2.9.3.1
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-52601",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T19:27:38.620344Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T19:27:44.838Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Device Manager",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "prior to version 2.9.3.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-116",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-116 Excavation"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-321",
"description": "CWE-321: Use of Hard-coded Cryptographic Key",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:29:25.830Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Hardcoding sensitive information",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-52601",
"datePublished": "2025-12-26T04:29:25.830Z",
"dateReserved": "2025-06-18T07:10:49.611Z",
"dateUpdated": "2025-12-26T19:27:44.838Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-52600 (GCVE-0-2025-52600)
Vulnerability from cvelistv5 – Published: 2025-12-26 04:20 – Updated: 2025-12-26 14:50
VLAI
Title
Improper Input Validation
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the user's host PC.The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-20 - Improper Input Validation
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | QNV-C8012 |
Affected:
Prior to version 2.22.05
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-52600",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T14:42:11.310664Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T14:50:40.099Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "QNV-C8012",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 2.22.05"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003e\n\n\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the user\u0027s host PC.The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n\u003cbr\u003e\u003c/div\u003e\u003c/div\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the user\u0027s host PC.The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-153",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-153 Input Data Manipulation"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "HIGH",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "PASSIVE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:20:17.014Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Improper Input Validation",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-52600",
"datePublished": "2025-12-26T04:20:17.014Z",
"dateReserved": "2025-06-18T07:10:49.611Z",
"dateUpdated": "2025-12-26T14:50:40.099Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-52599 (GCVE-0-2025-52599)
Vulnerability from cvelistv5 – Published: 2025-12-26 04:12 – Updated: 2025-12-26 15:15
VLAI
Title
Inadequate account permissions management
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-269 - Improper Privilege Management
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | QNV-C8012 |
Affected:
Prior to version 2.22.05
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-52599",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T15:12:40.665556Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T15:15:17.385Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "QNV-C8012",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 2.22.05"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n\u003cbr\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-122",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-122 Privilege Abuse"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-269",
"description": "CWE-269 Improper Privilege Management",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:12:37.550Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Inadequate account permissions management",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-52599",
"datePublished": "2025-12-26T04:12:37.550Z",
"dateReserved": "2025-06-18T07:10:49.610Z",
"dateUpdated": "2025-12-26T15:15:17.385Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-52598 (GCVE-0-2025-52598)
Vulnerability from cvelistv5 – Published: 2025-12-26 04:07 – Updated: 2025-12-26 15:15
VLAI
Title
Insufficient certificate validation
Summary
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has found a flaw that camera's client service does not perform certificate validation. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-295 - Improper Certificate Validation
Assigner
References
1 reference
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | QNV-C8012 |
Affected:
Prior to version 2.22.05
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-52598",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-26T15:12:31.184142Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T15:15:22.694Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "QNV-C8012",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 2.22.05"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cdiv\u003eCybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has found a flaw that camera\u0027s client service does not perform certificate validation. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n\u003cbr\u003e"
}
],
"value": "Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has found a flaw that camera\u0027s client service does not perform certificate validation. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-22",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-22 Exploiting Trust in Client"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-295",
"description": "CWE-295 Improper Certificate Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-26T04:07:19.958Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Insufficient certificate validation",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2025-52598",
"datePublished": "2025-12-26T04:07:19.958Z",
"dateReserved": "2025-06-18T07:10:49.610Z",
"dateUpdated": "2025-12-26T15:15:22.694Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2023-5038 (GCVE-0-2023-5038)
Vulnerability from cvelistv5 – Published: 2024-06-25 02:14 – Updated: 2024-08-02 07:44
VLAI
Title
Unauthenticated DoS
Summary
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on the camera. An attacker runs a crafted URL, nobody can access the web management page of the camera. and must manually restart the device or re-power it. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.hanwhavision.com/wp-content/uploads/2… | vendor-advisory |
Impacted products
46 products
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | A-Series, Q-Series, PNM-series Camera |
Affected:
Prior to version 1.41.16, Prior to version 2.22.00
|
|
| hanwhavision | ano-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l6022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l6082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ane-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l6082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ane-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l7082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-c9022rv |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9000qb |
Affected:
0 , < 2.22.01
(custom)
cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-7002vd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-8082vt |
Affected:
0 , < 2.22.00
(custom)
cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9002vq |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9022v |
Affected:
0 , < 2.22.00
(custom)
cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9031rv |
Affected:
0 , < 2.22.01
(custom)
cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084qz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084rqz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9085rqz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084qz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084rqz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9085rqz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9322vqp |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-7082rvd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-12082rvd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6011 |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6021 |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6032r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:* |
Date Public
2024-06-25 02:05
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-c9022rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9000qb",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7002vd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-8082vt",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9002vq",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9022v",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9031rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9322vqp",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-12082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6011",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6021",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-c9022rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9000qb",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7002vd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-8082vt",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9002vq",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9022v",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9031rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9322vqp",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-12082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6011",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6021",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-5038",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-06-26T16:44:21.978973Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-26T23:04:59.868Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T07:44:53.791Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2024/06/Camera-Vulnerability-Report-CVE-2023-5037-5038.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "A-Series, Q-Series, PNM-series Camera",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 1.41.16, Prior to version 2.22.00"
}
]
}
],
"datePublic": "2024-06-25T02:05:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\n\n\u003cdiv\u003e\u003cdiv\u003ebadmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on the camera. An attacker runs a crafted URL, nobody can access the web management page of the camera. and must manually restart the device or re-power it. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n"
}
],
"value": "badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on the camera. An attacker runs a crafted URL, nobody can access the web management page of the camera. and must manually restart the device or re-power it. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-703",
"description": "CWE-703: Improper Check or Handling of Exceptional Conditions",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-248",
"description": "CWE-248: Uncaught Exception",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-25T02:14:06.610Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"tags": [
"vendor-advisory"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2024/06/Camera-Vulnerability-Report-CVE-2023-5037-5038.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Unauthenticated DoS",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2023-5038",
"datePublished": "2024-06-25T02:14:06.610Z",
"dateReserved": "2023-09-18T06:00:29.464Z",
"dateUpdated": "2024-08-02T07:44:53.791Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2023-5037 (GCVE-0-2023-5037)
Vulnerability from cvelistv5 – Published: 2023-11-13 07:42 – Updated: 2024-08-02 07:44
VLAI
Title
Authenticated Command Injection
Summary
badmonkey, a Security Researcher has found a flaw that allows for a authenticated command injection on the camera. An attacker could inject malicious into request packets to execute command. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.hanwhavision.com/wp-content/uploads/2… | vendor-advisory |
Impacted products
46 products
| Vendor | Product | Version | |
|---|---|---|---|
| Hanwha Vision Co., Ltd. | A-Series, Q-Series, PNM-series Camera |
Affected:
Prior to version 1.41.16;Prior to version 2.22.00;
|
|
| hanwhavision | ano-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l6022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l6082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ane-l6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l6082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ane-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l7082r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | ano-l7022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | anv-l7012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-c9022rv |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9000qb |
Affected:
0 , < 2.22.01
(custom)
cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-7002vd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-8082vt |
Affected:
0 , < 2.22.00
(custom)
cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9002vq |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9022v |
Affected:
0 , < 2.22.00
(custom)
cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9031rv |
Affected:
0 , < 2.22.01
(custom)
cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084qz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084rqz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9085rqz |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084qz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9084rqz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9085rqz1 |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-9322vqp |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-7082rvd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:* |
|
| hanwhavision | pnm-12082rvd |
Affected:
0 , < 2.22.02
(custom)
cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6072r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnd-6032r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lnv-6022r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | lno-6012r |
Affected:
0 , < 1.41.13
(custom)
cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6011 |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6012r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6021 |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6022r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:* |
|
| hanwhavision | qnd-6032r |
Affected:
0 , < 1.41.16
(custom)
cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:* |
Date Public
2024-06-25 02:03
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l6082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l6082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ane-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ane-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7082r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7082r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:ano-l7022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "ano-l7022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:anv-l7012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "anv-l7012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-c9022rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-c9022rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9000qb:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9000qb",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7002vd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7002vd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-8082vt:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-8082vt",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9002vq:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9002vq",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9022v:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9022v",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.00",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9031rv:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9031rv",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.01",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084qz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084qz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9084rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9084rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9085rqz1:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9085rqz1",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-9322vqp:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-9322vqp",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-7082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-7082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:pnm-12082rvd:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "pnm-12082rvd",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "2.22.02",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6072r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6072r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lnv-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lnv-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:lno-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "lno-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.13",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6011:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6011",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6012r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6012r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6021:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6021",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6022r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6022r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:h:hanwhavision:qnd-6032r:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "qnd-6032r",
"vendor": "hanwhavision",
"versions": [
{
"lessThan": "1.41.16",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-5037",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-06-26T23:04:45.931319Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-26T23:04:52.824Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T07:44:53.823Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2024/06/Camera-Vulnerability-Report-CVE-2023-5037-5038.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "A-Series, Q-Series, PNM-series Camera",
"vendor": "Hanwha Vision Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Prior to version 1.41.16;Prior to version 2.22.00;"
}
]
}
],
"datePublic": "2024-06-25T02:03:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\n\n\u003cdiv\u003e\u003cdiv\u003ebadmonkey, a Security Researcher has found a flaw that allows for a authenticated command injection on the camera. An attacker could inject malicious into request packets to execute command. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds.\u003c/div\u003e\u003c/div\u003e\n\n"
}
],
"value": "badmonkey, a Security Researcher has found a flaw that allows for a authenticated command injection on the camera. An attacker could inject malicious into request packets to execute command. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer\u0027s report for details and workarounds."
}
],
"impacts": [
{
"capecId": "CAPEC-88",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-88 OS Command Injection"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"privilegesRequired": "HIGH",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "LOW",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-25T02:04:22.363Z",
"orgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"shortName": "Hanwha_Vision"
},
"references": [
{
"tags": [
"vendor-advisory"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2024/06/Camera-Vulnerability-Report-CVE-2023-5037-5038.pdf"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Authenticated Command Injection",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "fc9afe74-3f80-4fb7-a313-e6f036a89882",
"assignerShortName": "Hanwha_Vision",
"cveId": "CVE-2023-5037",
"datePublished": "2023-11-13T07:42:00.337Z",
"dateReserved": "2023-09-18T05:54:35.205Z",
"dateUpdated": "2024-08-02T07:44:53.823Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2023-31994 (GCVE-0-2023-31994)
Vulnerability from cvelistv5 – Published: 2023-05-23 00:00 – Updated: 2025-01-17 16:42
VLAI
Summary
Certain Hanwha products are vulnerable to Denial of Service (DoS). ck vector is: When an empty UDP packet is sent to the listening service, the service thread results in a non-functional service (DoS) via WS Discovery and Hanwha proprietary discovery services. This affects IP Camera ANE-L7012R 1.41.01 and IP Camera XNV-9082R 2.10.02.
Severity
5.3 (Medium)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T15:03:28.511Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.hanwhavision.com/wp-content/uploads/2023/04/Camera-Vulnerability-Report.pdf"
},
{
"tags": [
"x_transferred"
],
"url": "https://hanwhavisionamerica.com/download/50042/"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-31994",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-01-17T16:42:01.240259Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-noinfo Not enough information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-01-17T16:42:07.446Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Certain Hanwha products are vulnerable to Denial of Service (DoS). ck vector is: When an empty UDP packet is sent to the listening service, the service thread results in a non-functional service (DoS) via WS Discovery and Hanwha proprietary discovery services. This affects IP Camera ANE-L7012R 1.41.01 and IP Camera XNV-9082R 2.10.02."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-05-30T00:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://www.hanwhavision.com/wp-content/uploads/2023/04/Camera-Vulnerability-Report.pdf"
},
{
"url": "https://hanwhavisionamerica.com/download/50042/"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2023-31994",
"datePublished": "2023-05-23T00:00:00.000Z",
"dateReserved": "2023-04-29T00:00:00.000Z",
"dateUpdated": "2025-01-17T16:42:07.446Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}