{"vulnerability": "CVE-2019-1239", "sightings": [{"uuid": "2cd1d917-301b-4c4b-9842-d4f4af242ab9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12390", "type": "seen", "source": "https://t.me/ctinow/200028", "content": "https://ift.tt/ymu95fK\nCVE-2019-12390 | Anviz Access Control Service Port 5010 PIN information disclosure", "creation_timestamp": "2024-03-05T09:12:22.000000Z"}, {"uuid": "25f525d6-6d3f-4405-8950-aeba2230778d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12392", "type": "seen", "source": "https://t.me/ctinow/200042", "content": "https://ift.tt/lGmKObs\nCVE-2019-12392 | Anviz Access Control authorization", "creation_timestamp": "2024-03-05T09:42:21.000000Z"}, {"uuid": "37d2416f-217a-4e81-879e-b369c185bc86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12391", "type": "seen", "source": "https://t.me/ctinow/200029", "content": "https://ift.tt/j8VIEbh\nCVE-2019-12391 | Anviz Management System Log unknown vulnerability", "creation_timestamp": "2024-03-05T09:12:24.000000Z"}, {"uuid": "3b7436ff-fbd7-4c9a-9f30-db781e0d5cce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12393", "type": "seen", "source": "https://t.me/ctinow/200043", "content": "https://ift.tt/Nna78fx\nCVE-2019-12393 | Anviz Access Control authentication replay", "creation_timestamp": "2024-03-05T09:42:22.000000Z"}, {"uuid": "098f2773-8c9b-483f-9c4c-4225936411c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12394", "type": "seen", "source": "https://t.me/ctinow/200044", "content": "https://ift.tt/w6zhBPr\nCVE-2019-12394 | Anviz Access Control Password Change improper authentication", "creation_timestamp": "2024-03-05T09:42:23.000000Z"}, {"uuid": "fbe0bb70-a9b9-4475-96b6-05ffb6496c15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12392", "type": "seen", "source": "https://t.me/cibsecurity/8439", "content": "ATENTION\u203c New - CVE-2019-12392\n\nAnviz access control devices allow remote attackers to issue commands without a password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-12-03T16:02:43.000000Z"}, {"uuid": "557079c7-cc3a-4a19-bd3f-431c6e77822d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12394", "type": "seen", "source": "https://t.me/cibsecurity/8437", "content": "ATENTION\u203c New - CVE-2019-12394\n\nAnviz access control devices allow unverified password change which allows remote attackers to change the administrator password without prior authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-12-03T16:02:42.000000Z"}, {"uuid": "052f01dc-a71f-4ce8-a681-63f7c2ee4672", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12393", "type": "seen", "source": "https://t.me/cibsecurity/8438", "content": "ATENTION\u203c New - CVE-2019-12393\n\nAnviz access control devices are vulnerable to replay attacks which could allow attackers to intercept and replay open door requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-12-03T16:02:42.000000Z"}, {"uuid": "0b053014-61a3-4aef-84b8-1d05663cf8c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12391", "type": "seen", "source": "https://t.me/cibsecurity/8440", "content": "ATENTION\u203c New - CVE-2019-12391\n\nThe Anviz Management System for access control has insufficient logging for device events such as door open requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-12-03T16:02:44.000000Z"}, {"uuid": "4e61e433-31a4-4f9d-aa35-319cafc5fd8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12390", "type": "seen", "source": "https://t.me/cibsecurity/8441", "content": "ATENTION\u203c New - CVE-2019-12390\n\nAnviz access control devices expose private Information (pin code and name) by allowing remote attackers to query this information without credentials via port tcp/5010.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-12-03T16:02:48.000000Z"}]}