Controller DoS due to stack overflow when decoding a message from the server. See Honeywell Security Notification for recommendations on upgrading and versioning.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HHoneywell C300
HWHoneywellwszystkie wersjeHoneywell C300 Firmware
OSHoneywell501.1 – 501.6hf8510.1 – 510.2hf12511.1 – 511.5tcu3520.1 – 520.1tcu4520.2 – 520.2tcu2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Related vulnerabilities
CVE-2023-25178CRITICAL9.8ten sam produkt
Controller may be loaded with malicious firmware which could enable remote code execution. See Honeywell Secur...
CVE-2023-25770CRITICAL9.8ten sam produkt
Controller DoS may occur due to buffer overflow when an error is generated in response to a specially crafted ...
CVE-2021-38395CRITICAL9.1ten sam produkt
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to improper neutralization of spe...
CVE-2021-38397CRITICAL10.0ten sam produkt
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file uploads, whi...
CVE-2023-26597HIGH7.5ten sam produkt
Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controlle...