CVE-2017-14263
Last modified
CVE-2017-14263 is a vulnerability of currently unknown severity. Honeywell NVR devices allow remote attackers to create a user account in the admin group by leveraging access to a guest account to obtain a session ID, and then sending that session ID in a userManager.addUser request to the /RPC2 URI. The attacker can login to the device with that new user account to fully control the device.. EPSS estimates a 3.74% chance of exploitation in the next 30 days.
Description
Honeywell NVR devices allow remote attackers to create a user account in the admin group by leveraging access to a guest account to obtain a session ID, and then sending that session ID in a userManager.addUser request to the /RPC2 URI. The attacker can login to the device with that new user account to fully control the device.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Honeywell | Enterprise Dvr Firmware | All versions |
| Honeywell | Maxpro Nvr Hybrid Se Firmware | All versions |
| Honeywell | Maxpro Nvr Hybrid Xe Firmware | All versions |
| Honeywell | Maxpro Nvr Se Firmware | All versions |
| Honeywell | Maxpro Nvr Xe Firmware | All versions |
| Honeywell | Fusion Iv Rev C Firmware | All versions |
| Honeywell | Maxpro Nvr Pe Firmware | All versions |
References
- https://github.com/zzz66686/Honeywell_NVR_vulThird Party Advisory
- https://github.com/zzz66686/Honeywell_NVR_vulThird Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-14263?
How severe is CVE-2017-14263?
How do I fix CVE-2017-14263?
Are you affected by CVE-2017-14263?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST