Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
honeywell c300 firmware - vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2021-38397
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file uploads, which may allow an malicious user to remotely execute arbitrary code and cause a denial-of-service condition.
Honeywell C200 Firmware -
Honeywell C200e Firmware -
Honeywell C300 Firmware -
Honeywell Application Control Environment Firmware -
9.8
CVSSv3
CVE-2023-25178
Controller may be loaded with malicious firmware which could enable remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning.
Honeywell C300 Firmware
9.8
CVSSv3
CVE-2021-38395
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to improper neutralization of special elements in output, which may allow an malicious user to remotely execute arbitrary code and cause a denial-of-service condition.
Honeywell C200 Firmware -
Honeywell C200e Firmware -
Honeywell C300 Firmware -
Honeywell Application Control Environment Firmware -
7.5
CVSSv3
CVE-2023-26597
Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controller. See Honeywell Security Notification for recommendations on upgrading and versioning. See Honeywell Security Notification for recommendations on upgrading and versionin...
Honeywell C300 Firmware
7.5
CVSSv3
CVE-2023-25770
Controller DoS may occur due to buffer overflow when an error is generated in response to a specially crafted message. See Honeywell Security Notification for recommendations on upgrading and versioning.
Honeywell C300 Firmware
7.5
CVSSv3
CVE-2023-24480
Controller DoS due to stack overflow when decoding a message from the server. See Honeywell Security Notification for recommendations on upgrading and versioning.
Honeywell C300 Firmware
7.5
CVSSv3
CVE-2021-38399
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to relative path traversal, which may allow an attacker access to unauthorized files and directories.
Honeywell C200 Firmware -
Honeywell C200e Firmware -
Honeywell C300 Firmware -
Honeywell Application Control Environment Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started