Search criteria
6 vulnerabilities found for h0-ecom100_firmware by hosteng
FKIE_CVE-2022-3228
Vulnerability from fkie_nvd - Published: 2022-10-28 18:15 - Updated: 2024-11-21 07:19
Severity ?
6.5 (Medium) - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
6.5 (Medium) - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
6.5 (Medium) - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Using custom code, an attacker can write into name or description fields larger than the appropriate buffer size causing a stack-based buffer overflow on Host Engineering H0-ECOM100 Communications Module Firmware versions v5.0.155 and prior. This may allow an attacker to crash the affected device or cause it to become unresponsive.
References
| URL | Tags | ||
|---|---|---|---|
| ics-cert@hq.dhs.gov | https://www.cisa.gov/uscert/ics/advisories/icsa-22-263-04 | Mitigation, Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.cisa.gov/uscert/ics/advisories/icsa-22-263-04 | Mitigation, Third Party Advisory, US Government Resource |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| hosteng | h0-ecom100_firmware | * | |
| hosteng | h0-ecom100 | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hosteng:h0-ecom100_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C5293838-57AE-458F-92A9-C0EC65F98C53",
"versionEndExcluding": "5.0.156",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hosteng:h0-ecom100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CEDEBE22-73C0-4F46-BA93-28D3677E4DA4",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Using custom code, an attacker can write into name or description fields larger than the appropriate buffer size causing a stack-based buffer overflow on Host Engineering H0-ECOM100 Communications Module Firmware versions v5.0.155 and prior. This may allow an attacker to crash the affected device or cause it to become unresponsive."
},
{
"lang": "es",
"value": "Usando c\u00f3digo personalizado, un atacante puede escribir en campos de nombre o descripci\u00f3n m\u00e1s grandes que el tama\u00f1o de b\u00fafer apropiado, lo que provoca un Desbordamiento del B\u00fafer en Host Engineering H0-ECOM100 Communications Module Firmware en las versiones v5.0.155 y anteriores. Esto puede permitir que un atacante bloquee el dispositivo afectado o que deje de responder."
}
],
"id": "CVE-2022-3228",
"lastModified": "2024-11-21T07:19:05.823",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "ics-cert@hq.dhs.gov",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-10-28T18:15:12.077",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Mitigation",
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-263-04"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-263-04"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-121"
}
],
"source": "ics-cert@hq.dhs.gov",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2020-25195
Vulnerability from fkie_nvd - Published: 2020-12-15 20:15 - Updated: 2024-11-21 05:17
Severity ?
Summary
The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which may allow an attacker to bypass the check and send input to crash the device.
References
| URL | Tags | ||
|---|---|---|---|
| ics-cert@hq.dhs.gov | https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02 | Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02 | Third Party Advisory, US Government Resource |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| hosteng | h0-ecom100_firmware | * | |
| hosteng | h0-ecom100 | 6 | |
| hosteng | h0-ecom100_firmware | * | |
| hosteng | h0-ecom100 | 7 | |
| hosteng | h0-ecom100_firmware | * | |
| hosteng | h0-ecom100 | 9 | |
| hosteng | h2-ecom100_firmware | * | |
| hosteng | h2-ecom100 | 5 | |
| hosteng | h2-ecom100_firmware | * | |
| hosteng | h2-ecom100 | 8 | |
| hosteng | h4-ecom100_firmware | * | |
| hosteng | h4-ecom100 | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hosteng:h0-ecom100_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "261A5D3D-8ABC-4A38-85B9-43D49B9F30ED",
"versionEndIncluding": "4.0.348",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hosteng:h0-ecom100:6:*:*:*:*:*:*:*",
"matchCriteriaId": "B5094458-DAF8-49FE-9317-8213649760C4",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hosteng:h0-ecom100_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7647AB5C-C9AF-4EDC-AD39-9129B462CECC",
"versionEndIncluding": "4.1.113",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hosteng:h0-ecom100:7:*:*:*:*:*:*:*",
"matchCriteriaId": "5800C95C-7CCA-4968-AD90-4258CA389D49",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hosteng:h0-ecom100_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DED7D3BB-3093-4473-9827-A5750E2C2DA4",
"versionEndIncluding": "5.0.149",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hosteng:h0-ecom100:9:*:*:*:*:*:*:*",
"matchCriteriaId": "01EB51BF-6519-4B01-B253-94855091773A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hosteng:h2-ecom100_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1D145662-CCB8-4626-96EF-62C127D2780E",
"versionEndIncluding": "4.0.2148",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hosteng:h2-ecom100:5:*:*:*:*:*:*:*",
"matchCriteriaId": "0FE3FD06-985E-4CEB-AEC4-94FEAA2ABB35",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hosteng:h2-ecom100_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "35FF4084-D3B2-454F-8D3B-0A55469493A0",
"versionEndIncluding": "5.0.1043",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hosteng:h2-ecom100:8:*:*:*:*:*:*:*",
"matchCriteriaId": "41006F1C-6D13-484E-A150-8CCF44A0465A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hosteng:h4-ecom100_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "96566D31-6B83-4695-AF03-C29D275F9D9E",
"versionEndIncluding": "4.0.2148",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hosteng:h4-ecom100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63D19A9C-5EC3-4FF0-845E-ECFE11DB7049",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which may allow an attacker to bypass the check and send input to crash the device."
},
{
"lang": "es",
"value": "La longitud de los campos de entrada de los m\u00f3dulos Host Engineering H0-ECOM100, H2-ECOM100 y H4-ECOM100 son verificados solo en el lado del cliente cuando se reciben entradas del servidor web de configuraci\u00f3n, lo que puede permitir a un atacante omitir la comprobaci\u00f3n y enviar entradas para bloquear el dispositivo"
}
],
"id": "CVE-2020-25195",
"lastModified": "2024-11-21T05:17:36.950",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-12-15T20:15:15.980",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "ics-cert@hq.dhs.gov",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2022-3228 (GCVE-0-2022-3228)
Vulnerability from cvelistv5 – Published: 2022-10-28 17:17 – Updated: 2025-04-16 16:07
VLAI?
Summary
Using custom code, an attacker can write into name or description fields larger than the appropriate buffer size causing a stack-based buffer overflow on Host Engineering H0-ECOM100 Communications Module Firmware versions v5.0.155 and prior. This may allow an attacker to crash the affected device or cause it to become unresponsive.
Severity ?
6.5 (Medium)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Host Engineering | H0-ECOM100 Communications Module |
Affected:
All versions , ≤ Firmware v5.0.155
(custom)
|
Credits
David Formby and Caleb Purcell of Fortiphyd Logic reported this vulnerability.
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T01:00:10.822Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-263-04"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-3228",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-16T15:49:29.267408Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-04-16T16:07:13.798Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "H0-ECOM100 Communications Module",
"vendor": "Host Engineering",
"versions": [
{
"lessThanOrEqual": "Firmware v5.0.155",
"status": "affected",
"version": "All versions",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "David Formby and Caleb Purcell of Fortiphyd Logic reported this vulnerability."
}
],
"datePublic": "2022-09-20T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Using custom code, an attacker can write into name or description fields larger than the appropriate buffer size causing a stack-based buffer overflow on Host Engineering H0-ECOM100 Communications Module Firmware versions v5.0.155 and prior. This may allow an attacker to crash the affected device or cause it to become unresponsive."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-10-28T00:00:00.000Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-263-04"
}
],
"source": {
"discovery": "UNKNOWN"
},
"x_generator": {
"engine": "Vulnogram 0.0.9"
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2022-3228",
"datePublished": "2022-10-28T17:17:46.811Z",
"dateReserved": "2022-09-15T00:00:00.000Z",
"dateUpdated": "2025-04-16T16:07:13.798Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-25195 (GCVE-0-2020-25195)
Vulnerability from cvelistv5 – Published: 2020-12-15 19:38 – Updated: 2024-08-04 15:26
VLAI?
Summary
The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which may allow an attacker to bypass the check and send input to crash the device.
Severity ?
No CVSS data available.
CWE
- CWE-20 - IMPROPER INPUT VALIDATION CWE-20
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| n/a | Host Engineering H0-ECOM100 Module |
Affected:
Hardware Versions 6x and prior with Firmware Versions 4.0.348 and prior
Affected: Hardware Version 7x with Firmware Versions 4.1.113 and prior Affected: Hardware Version 9x with Firmware Versions 5.0.149 and prior |
||||||||||||
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T15:26:10.231Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Host Engineering H0-ECOM100 Module",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Hardware Versions 6x and prior with Firmware Versions 4.0.348 and prior"
},
{
"status": "affected",
"version": "Hardware Version 7x with Firmware Versions 4.1.113 and prior"
},
{
"status": "affected",
"version": "Hardware Version 9x with Firmware Versions 5.0.149 and prior"
}
]
},
{
"product": "Host Engineering H2-ECOM100 Module",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Hardware Versions 5x and prior with Firmware Versions 4.0.2148 and prior"
},
{
"status": "affected",
"version": "Hardware Version 8x with Firmware Versions 5.0.1043 and prior"
}
]
},
{
"product": "Host Engineering H4-ECOM100 Module",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Firmware Versions 4.0.2148 and prior"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which may allow an attacker to bypass the check and send input to crash the device."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "IMPROPER INPUT VALIDATION CWE-20",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-12-15T19:38:02",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2020-25195",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Host Engineering H0-ECOM100 Module",
"version": {
"version_data": [
{
"version_value": "Hardware Versions 6x and prior with Firmware Versions 4.0.348 and prior"
},
{
"version_value": "Hardware Version 7x with Firmware Versions 4.1.113 and prior"
},
{
"version_value": "Hardware Version 9x with Firmware Versions 5.0.149 and prior"
}
]
}
},
{
"product_name": "Host Engineering H2-ECOM100 Module",
"version": {
"version_data": [
{
"version_value": "Hardware Versions 5x and prior with Firmware Versions 4.0.2148 and prior"
},
{
"version_value": "Hardware Version 8x with Firmware Versions 5.0.1043 and prior"
}
]
}
},
{
"product_name": "Host Engineering H4-ECOM100 Module",
"version": {
"version_data": [
{
"version_value": "Firmware Versions 4.0.2148 and prior"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which may allow an attacker to bypass the check and send input to crash the device."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "IMPROPER INPUT VALIDATION CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02",
"refsource": "MISC",
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2020-25195",
"datePublished": "2020-12-15T19:38:02",
"dateReserved": "2020-09-04T00:00:00",
"dateUpdated": "2024-08-04T15:26:10.231Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-3228 (GCVE-0-2022-3228)
Vulnerability from nvd – Published: 2022-10-28 17:17 – Updated: 2025-04-16 16:07
VLAI?
Summary
Using custom code, an attacker can write into name or description fields larger than the appropriate buffer size causing a stack-based buffer overflow on Host Engineering H0-ECOM100 Communications Module Firmware versions v5.0.155 and prior. This may allow an attacker to crash the affected device or cause it to become unresponsive.
Severity ?
6.5 (Medium)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Host Engineering | H0-ECOM100 Communications Module |
Affected:
All versions , ≤ Firmware v5.0.155
(custom)
|
Credits
David Formby and Caleb Purcell of Fortiphyd Logic reported this vulnerability.
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T01:00:10.822Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-263-04"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-3228",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-16T15:49:29.267408Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-04-16T16:07:13.798Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "H0-ECOM100 Communications Module",
"vendor": "Host Engineering",
"versions": [
{
"lessThanOrEqual": "Firmware v5.0.155",
"status": "affected",
"version": "All versions",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "David Formby and Caleb Purcell of Fortiphyd Logic reported this vulnerability."
}
],
"datePublic": "2022-09-20T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Using custom code, an attacker can write into name or description fields larger than the appropriate buffer size causing a stack-based buffer overflow on Host Engineering H0-ECOM100 Communications Module Firmware versions v5.0.155 and prior. This may allow an attacker to crash the affected device or cause it to become unresponsive."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-10-28T00:00:00.000Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-263-04"
}
],
"source": {
"discovery": "UNKNOWN"
},
"x_generator": {
"engine": "Vulnogram 0.0.9"
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2022-3228",
"datePublished": "2022-10-28T17:17:46.811Z",
"dateReserved": "2022-09-15T00:00:00.000Z",
"dateUpdated": "2025-04-16T16:07:13.798Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-25195 (GCVE-0-2020-25195)
Vulnerability from nvd – Published: 2020-12-15 19:38 – Updated: 2024-08-04 15:26
VLAI?
Summary
The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which may allow an attacker to bypass the check and send input to crash the device.
Severity ?
No CVSS data available.
CWE
- CWE-20 - IMPROPER INPUT VALIDATION CWE-20
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| n/a | Host Engineering H0-ECOM100 Module |
Affected:
Hardware Versions 6x and prior with Firmware Versions 4.0.348 and prior
Affected: Hardware Version 7x with Firmware Versions 4.1.113 and prior Affected: Hardware Version 9x with Firmware Versions 5.0.149 and prior |
||||||||||||
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T15:26:10.231Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Host Engineering H0-ECOM100 Module",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Hardware Versions 6x and prior with Firmware Versions 4.0.348 and prior"
},
{
"status": "affected",
"version": "Hardware Version 7x with Firmware Versions 4.1.113 and prior"
},
{
"status": "affected",
"version": "Hardware Version 9x with Firmware Versions 5.0.149 and prior"
}
]
},
{
"product": "Host Engineering H2-ECOM100 Module",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Hardware Versions 5x and prior with Firmware Versions 4.0.2148 and prior"
},
{
"status": "affected",
"version": "Hardware Version 8x with Firmware Versions 5.0.1043 and prior"
}
]
},
{
"product": "Host Engineering H4-ECOM100 Module",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Firmware Versions 4.0.2148 and prior"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which may allow an attacker to bypass the check and send input to crash the device."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "IMPROPER INPUT VALIDATION CWE-20",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-12-15T19:38:02",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2020-25195",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Host Engineering H0-ECOM100 Module",
"version": {
"version_data": [
{
"version_value": "Hardware Versions 6x and prior with Firmware Versions 4.0.348 and prior"
},
{
"version_value": "Hardware Version 7x with Firmware Versions 4.1.113 and prior"
},
{
"version_value": "Hardware Version 9x with Firmware Versions 5.0.149 and prior"
}
]
}
},
{
"product_name": "Host Engineering H2-ECOM100 Module",
"version": {
"version_data": [
{
"version_value": "Hardware Versions 5x and prior with Firmware Versions 4.0.2148 and prior"
},
{
"version_value": "Hardware Version 8x with Firmware Versions 5.0.1043 and prior"
}
]
}
},
{
"product_name": "Host Engineering H4-ECOM100 Module",
"version": {
"version_data": [
{
"version_value": "Firmware Versions 4.0.2148 and prior"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which may allow an attacker to bypass the check and send input to crash the device."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "IMPROPER INPUT VALIDATION CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02",
"refsource": "MISC",
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-345-02"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2020-25195",
"datePublished": "2020-12-15T19:38:02",
"dateReserved": "2020-09-04T00:00:00",
"dateUpdated": "2024-08-04T15:26:10.231Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}