ICSA-19-304-02
·
Published 2019-10-31
·
View on CISA ICS-CERT ↗
Honeywell equIP Series IP Cameras
CVSS 7.5
HIGH
Risk Summary
Successful exploitation of this vulnerability could result in denial-of-service conditions.
CVEs (1)
Remediations
- Honeywell has released firmware update packages
- Update firmware of vulnerable devices per this security notification
- Isolate their system from the Internet or create additional layers of defense to their system from the Internet by placing the affected hardware behind a firewall or into a DMZ
- If remote connections to the network are required, consider using a VPN or other means to ensure secure remote connections into the network where the device is located.
- More information on this issue can be found in Honeywell Security Notification SN 2019-09-13 01
Affected Vendors
Honeywell
Affected Products (14)
Honeywell
·
H4L2GR1
<2.420.HW01.33.20190812
Honeywell
·
HBL2GR1
<2.420.HW01.33.20190812
Honeywell
·
HCL2G
<2.420.HW01.33.20190812
Honeywell
·
H4W2GR1
<1.000.HW00.21.20190812
Honeywell
·
H4W2GR2
<1.000.HW00.21.20190812
Honeywell
·
H4W4GR1
<1.000.HW00.21.20190812
Honeywell
·
H3W2GR1
<1.000.HW00.21.20190812
Honeywell
·
H3W2GR2
<1.000.HW00.21.20190812
Honeywell
·
H3W4GR1
<1.000.HW00.21.20190812
Honeywell
·
HBW2GR1
<1.000.HW00.21.20190812
Honeywell
·
HBW4GR1
<1.000.HW00.21.20190812
Honeywell
·
HBW2GR3
<1.000.HW00.21.20190812
Honeywell
·
HCW2G
<1.000.HW00.21.20190812
Honeywell
·
HCW4G
<1.000.HW00.21.20190812
Affected Sectors
Commercial Facilities, Critical Manufacturing, Energy, Healthcare and Public Health
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more