Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIcscertCVELIST:CVE-2020-6972
HistoryMar 24, 2020 - 4:38 p.m.

CVE-2020-6972

2020-03-2416:38:57
CWE-294
icscert
www.cve.org

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.5%

JSON

In Notifier Web Server (NWS) Version 3.50 and earlier, the Honeywell Fire Web Server’s authentication may be bypassed by a capture-replay attack from a web browser.

CNA Affected

[
  {
    "product": "Notifier Web Server (NWS) Version 3.50 and earlier",
    "vendor": "Honeywell",
    "versions": [
      {
        "status": "affected",
        "version": "Notifier Web Server (NWS) Version 3.50 and earlier"
      }
    ]
  }
]

Related

cve 1
nvd 1
prion 1
ics 1
cve
cve
CVE-2020-6972
2020-03-24 17:15:11
nvd
nvd
CVE-2020-6972
2020-03-24 17:15:11
prion
prion
Authentication flaw
2020-03-24 17:15:00
ics
ics
Honeywell NOTI-FIRE-NET Web Server (NWS-3)
2020-02-20 12:00:00

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.5%

JSON
Related for CVELIST:CVE-2020-6972
cve1nvd1prion1ics1