Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
honeywell experion server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-23585
Experion server DoS due to heap overflow occurring during the handling of a specially crafted message for a specific configuration operation. See Honeywell Security Notification for recommendations on upgrading and versioning.
Honeywell Experion Server
Honeywell Experion Station
Honeywell Engineering Station
Honeywell Direct Station
NA
CVE-2023-22435
Experion server may experience a DoS due to a stack overflow when handling a specially crafted message.
Honeywell Experion Server
Honeywell Experion Station
Honeywell Engineering Station
Honeywell Direct Station
NA
CVE-2023-24474
Experion server may experience a DoS due to a heap overflow which could occur when handling a specially crafted message
Honeywell Experion Server
Honeywell Experion Station
Honeywell Engineering Station
Honeywell Direct Station
NA
CVE-2023-25948
Server information leak of configuration data when an error is generated in response to a specially crafted message. See Honeywell Security Notification for recommendations on upgrading and versioning.
Honeywell Experion Server
Honeywell Experion Station
Honeywell Engineering Station
Honeywell Direct Station
NA
CVE-2023-25078
Server or Console Station DoS due to heap overflow occurring during the handling of a specially crafted message for a specific configuration operation. See Honeywell Security Notification for recommendations on upgrading and versioning.
Honeywell Experion Server
Honeywell Experion Station
Honeywell Engineering Station
Honeywell Direct Station
NA
CVE-2023-5405
Server information leak for the CDA Server process memory can occur when an error is generated in response to a specially crafted message. See Honeywell Security Notification for recommendations on upgrading and versioning.
NA
CVE-2023-5406
Server communication with a controller can lead to remote code execution using a specially crafted message from the controller. See Honeywell Security Notification for recommendations on upgrading and versioning.
NA
CVE-2023-5398
Server receiving a malformed message based on a list of IPs resulting in heap corruption causing a denial of service. See Honeywell Security Notification for recommendations on upgrading and versioning.
NA
CVE-2023-5403
Server hostname translation to IP address manipulation which could lead to an attacker performing remote code execution or causing a failure. See Honeywell Security Notification for recommendations on upgrading and versioning.
NA
CVE-2023-5396
Server receiving a malformed message creates connection for a hostname that may cause a stack overflow resulting in possible remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »