Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-5394

Published: 11/04/2024 Updated: 12/04/2024

Vulnerability Summary

Server receiving a malformed message that where the GCL message hostname may be too large which may cause a stack overflow; resulting in possible remote code execution. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and versioning.

ICS Advisories

https://ics-cert.us-cert.gov/advisories/5eb8bbb1db2a635312c3d6a49eb21fc2
Critical Infrastructure Sectors: Chemical, Critical Manufacturing, Energy, Water and Wastewater Systems

References

https://process.honeywell.comhttps://nvd.nist.govhttps://www.cisa.gov/news-events/ics-advisories/icsa-24-116-04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073CVE-2024-5496CVE-2024-5495XPath injectionbypassCVE-2024-30043CVE-2024-24919denial of serviceCVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook