Vulnerabilities > CVE-2019-11561 - Unspecified vulnerability in Chuango products

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

high complexity

chuango

NVD

Published: 2019-05-08

Updated: 2020-08-24

Summary

The Chuango 433 MHz burglar-alarm product line is vulnerable to a Denial of Service attack. When the condition is triggered, the OV2 base station is unable to process sensor states and effectively prevents the alarm from setting off, as demonstrated by Chuango branded products, and non-Chuango branded products such as the Eminent EM8617 OV2 Wifi Alarm System.

Vulnerable Configurations

Part	Description	Count
OS	Chuango Chuango H4 Plus Firmware * Chuango AWV Plus Firmware * Chuango G5W 3G Firmware * Chuango G5 Plus Firmware * Chuango G3 Firmware * Chuango G5W Firmware * Chuango B11 Firmware * Chuango A8 Firmware * Chuango A11 Firmware * Chuango CG 105S Firmware *	10
Hardware	Chuango Chuango H4 Plus - Chuango AWV Plus - Chuango G5W 3G - Chuango G5 Plus - Chuango G3 - Chuango G5W - Chuango B11 - Chuango A8 - Chuango A11 - Chuango CG 105S -	10

References

https://github.com/RiieCco/write-ups/tree/master/CVE-2019-11561