CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-12804

In Hunesion i-oneNet version 3.0.7 ~ 3.0.53 and 4.0.4 ~ 4.0.16, due to the lack of update file integrity checking in the upgrade process, an attacker can craft malicious file and use it as an update.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.9%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.3

References

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35073
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35073

Products affected by CVE-2019-12804

Hunesion » I-Onenet » Version: 3.0.53

cpe:2.3:a:hunesion:i-onenet:3.0.53
Hunesion » I-Onenet » Version: 3.0.7

cpe:2.3:a:hunesion:i-onenet:3.0.7
Hunesion » I-Onenet » Version: 4.0.16

cpe:2.3:a:hunesion:i-onenet:4.0.16
Hunesion » I-Onenet » Version: 4.0.4

cpe:2.3:a:hunesion:i-onenet:4.0.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-12804

Products

Pricing

Contact Us