Server information leak of configuration data when an error is generated in response to a specially crafted message. See Honeywell Security Notification for recommendations on upgrading and versioning.
References
Link | Resource |
---|---|
https://process.honeywell.com | Product |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
22 Apr 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
Summary | (en) Server information leak of configuration data when an error is generated in response to a specially crafted message. See Honeywell Security Notification for recommendations on upgrading and versioning. |
25 Jul 2023, 19:00
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://process.honeywell.com - Product | |
CWE | CWE-209 | |
CPE | cpe:2.3:a:honeywell:engineering_station:*:*:*:*:*:*:*:* cpe:2.3:a:honeywell:experion_server:*:*:*:*:*:*:*:* cpe:2.3:a:honeywell:experion_station:*:*:*:*:*:*:*:* cpe:2.3:a:honeywell:direct_station:*:*:*:*:*:*:*:* |
|
First Time |
Honeywell direct Station
Honeywell experion Server Honeywell experion Station Honeywell Honeywell engineering Station |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
13 Jul 2023, 12:51
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-07-13 12:15
Updated : 2024-04-22 16:15
NVD link : CVE-2023-25948
Mitre link : CVE-2023-25948
CVE.ORG link : CVE-2023-25948
JSON object : View
Products Affected
honeywell
- direct_station
- experion_station
- engineering_station
- experion_server