What is CVE-2019-12804?

CVE-2019-12804 is a high-severity vulnerability in Hunesion I-onenet, classified under CWE-353. CVSS score: 7.8/10. Published 2019-07-10.

How severe is CVE-2019-12804?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Hunesion I-onenet

CVE-2019-12804

In Hunesion i-oneNet version 3.0.7 ~ 3.0.53 and 4.0.4 ~ 4.0.16, due to the lack of update file integrity checking in the upgrade process, an attacker can craft malicious file and use it as an update.

EPSS: 0.001 (26.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.

Affected products

Hunesion I-onenet — versions 3.0.7~3.0.53, 4.0.4~4.0.16

Weakness classification (CWE)

CWE-353

References

www.boho.or.kr/krcert/secNoticeView.do (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2019-12804?: CVE-2019-12804 is a high-severity vulnerability in Hunesion I-onenet, classified under CWE-353. CVSS score: 7.8/10. Published 2019-07-10.
How severe is CVE-2019-12804?: High severity. CVSS v3 base score is 7.8 out of 10.