Vulnerabilities > Honeywell > Hen16284 Firmware

DATE CVE VULNERABILITY TITLE RISK
2019-09-26 CVE-2019-13523 Missing Authentication for Critical Function vulnerability in Honeywell products
In Honeywell Performance IP Cameras and Performance NVRs, the integrated web server of the affected devices could allow remote attackers to obtain web configuration data in JSON format for IP cameras and NVRs (Network Video Recorders), which can be accessed without authentication over the network.
network
low complexity
honeywell CWE-306
5.3