Hanwha Vision NVR Buffer Overflow (CVE-2019-12223)

high Tenable OT Security Plugin ID 502283

Synopsis

The remote OT asset is affected by a vulnerability.

Description

The NVR can be rebooted via external attack continuously if it can be access via the public network. During the time, video transmission and recording will not be operated. Also, Exploiting the vulnerability is trivial and requires very low skill level.

The listed NVR is vulnerable to allow remote attackers to cause a denial of service (such as system crash and reboot) using buffer overflow. The listed all models are currently discontinued. Nevertheless, Hanwha Techwin have released the patched firmware regarding SRN-472S, 473S, 873S, 1673S, 4000 models.

However, SRN-1000, 1670D, 470D models will not be updated any more due to the date of discontinuation and End Of Life.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

SRN-472S, 473S, 873S, 1673S, 4000 models, update NVR immediately with latest firmware. As SRN-1000, 1670D, 470D models have no patched firmware, NVR needs to be disconnected from the public network or be blocked from untrusted IPs using IP firewall.

See Also

http://www.nessus.org/u?b75d430b

Plugin Details

Severity: High

ID: 502283

Version: 1.2

Type: remote

Family: Tenable.ot

Published: 6/26/2024

Updated: 6/27/2024

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS Score Source: CVE-2019-12223

CVSS v3

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.7

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:hanwhavision:srn-1000_firmware, cpe:/o:hanwhavision:srn-470d_firmware, cpe:/o:hanwhavision:srn-4000_firmware, cpe:/o:hanwhavision:srn-472s_firmware, cpe:/o:hanwhavision:srn-873s_firmware, cpe:/o:hanwhavision:srn-1670d_firmware, cpe:/o:hanwhavision:srn-1673s_firmware, cpe:/o:hanwhavision:srn-473s_firmware

Required KB Items: Tenable.ot/HanwhaVision

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/5/2019

Vulnerability Publication Date: 9/5/2019

Reference Information

CVE: CVE-2019-12223