MidnightBSD

Advisories for hanwha-security

CVE-2017-5168 MEDIUM

An issue was discovered in Hanwha Techwin Smart Security Manager Versions 1.5 and prior. Multiple Path Traversal vulnerabilities have been identified. The flaws exist within the ActiveMQ Broker service that is installed as part of the product. By issuing specific HTTP requests, if a user visits a malicious page, an attacker can gain access to arbitrary files on the server. Smart Security Manager Versions 1.4 and prior to 1.31 are affected by these vulnerabilities. These vulnerabilities can allow for remote code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H 1.6 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
hanwha-security smart_security_manager *
CVE-2017-5169 MEDIUM

An issue was discovered in Hanwha Techwin Smart Security Manager Versions 1.5 and prior. Multiple Cross Site Request Forgery vulnerabilities have been identified. The flaws exist within the Redis and Apache Felix Gogo servers that are installed as part of this product. By issuing specific HTTP Post requests, an attacker can gain system level access to a remote shell session. Smart Security Manager Versions 1.5 and prior are affected by these vulnerabilities. These vulnerabilities can allow for remote code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H 1.6 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
hanwha-security smart_security_manager *
CVE-2018-11689 MEDIUM

Web Viewer for Hanwha DVR 2.17 and Smart Viewer in Samsung Web Viewer for Samsung DVR are vulnerable to XSS via the /cgi-bin/webviewer_login_page data3 parameter. (The same Web Viewer codebase was transitioned from Samsung to Hanwha.)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
hanwha-security hrd-1641_firmware *
hanwha-security hrd-840_firmware *
hanwha-security hrd-443_firmware *
hanwha-security hrd-1642_firmware *
hanwha-security hrd-841_firmware *
hanwha-security hrd-440_firmware *
hanwha-security hrd-842_firmware *
hanwha-security hrd-442_firmware *
samsung smartviewer -
hanwha-security srd-1694u_firmware *
CVE-2018-6294 HIGH

Unsecured way of firmware update in Hanwha Techwin Smartcams

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2018-6295 HIGH

Unencrypted way of remote control and communications in Hanwha Techwin Smartcams

CVSS 2.0

Severity: HIGH

Problem Type: CWE-319,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2018-6296 MEDIUM

An undocumented (hidden) capability for switching the web interface in Hanwha Techwin Smartcams

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2018-6297 HIGH

Buffer overflow in Hanwha Techwin Smartcams

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2018-6298 HIGH

Remote code execution in Hanwha Techwin Smartcams

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2018-6299 HIGH

Authentication bypass in Hanwha Techwin Smartcams

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2018-6300 MEDIUM

Remote password change in Hanwha Techwin Smartcams

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2018-6301 MEDIUM

Arbitrary camera access and monitoring via cloud in Hanwha Techwin Smartcams

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2018-6302 MEDIUM

Denial of service by blocking of new camera registration on the cloud server in Hanwha Techwin Smartcams

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2018-6303 MEDIUM

Denial of service by uploading malformed firmware in Hanwha Techwin Smartcams

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
hanwha-security snh-v6410pn_firmware -
hanwha-security snh-v6410pnw_firmware -
CVE-2019-12223 HIGH

An issue was discovered in NVR WebViewer on Hanwah Techwin SRN-472s 1.07_190502 devices, and other SRN-x devices before 2019-05-03. A system crash and reboot can be achieved by submitting a long username in excess of 117 characters. The username triggers a buffer overflow in the main process controlling operation of the DVR system, rendering services unavailable during the reboot operation. A repeated attack affects availability as long as the attacker has network access to the device.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
hanwha-security srn-873s_firmware *
hanwha-security srn-472s_firmware 1.07_190502
hanwha-security srn-1673s_firmware *