Vulnerability Details CVE-2019-12804
In Hunesion i-oneNet version 3.0.7 ~ 3.0.53 and 4.0.4 ~ 4.0.16, due to the lack of update file integrity checking in the upgrade process, an attacker can craft malicious file and use it as an update.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 31.9%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.3
Products affected by CVE-2019-12804
-
cpe:2.3:a:hunesion:i-onenet:3.0.53
-
cpe:2.3:a:hunesion:i-onenet:3.0.7
-
cpe:2.3:a:hunesion:i-onenet:4.0.16
-
cpe:2.3:a:hunesion:i-onenet:4.0.4