CVE-2023-24474

Experion server may experience a DoS due to a heap overflow which could occur when handling a specially crafted message
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:honeywell:experion_server:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_server:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_server:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_server:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_server:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:honeywell:experion_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_station:*:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:honeywell:engineering_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:engineering_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:engineering_station:*:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:a:honeywell:direct_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:direct_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:direct_station:*:*:*:*:*:*:*:*

History

21 Nov 2024, 07:47

Type Values Removed Values Added
References () https://process.honeywell.com - Product () https://process.honeywell.com - Product

25 Jul 2023, 15:06

Type Values Removed Values Added
First Time Honeywell direct Station
Honeywell experion Server
Honeywell experion Station
Honeywell
Honeywell engineering Station
CPE cpe:2.3:a:honeywell:engineering_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_server:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:experion_station:*:*:*:*:*:*:*:*
cpe:2.3:a:honeywell:direct_station:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
References (MISC) https://process.honeywell.com - (MISC) https://process.honeywell.com - Product
CWE CWE-787

13 Jul 2023, 11:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-07-13 11:15

Updated : 2024-11-21 07:47


NVD link : CVE-2023-24474

Mitre link : CVE-2023-24474

CVE.ORG link : CVE-2023-24474


JSON object : View

Products Affected

honeywell

  • direct_station
  • engineering_station
  • experion_server
  • experion_station
CWE
CWE-122

Heap-based Buffer Overflow

CWE-787

Out-of-bounds Write