CVE-2023-26597

Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controller. See Honeywell Security Notification for recommendations on upgrading and versioning. See Honeywell Security Notification for recommendations on upgrading and versioning.
References
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:honeywell:c300:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:51

Type Values Removed Values Added
References () https://process.honeywell.com - Product () https://process.honeywell.com - Product

22 Apr 2024, 16:15

Type Values Removed Values Added
Summary (en) Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controller. (en) Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controller. See Honeywell Security Notification for recommendations on upgrading and versioning. See Honeywell Security Notification for recommendations on upgrading and versioning.

25 Jul 2023, 19:00

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
References (MISC) https://process.honeywell.com - (MISC) https://process.honeywell.com - Product
First Time Honeywell
Honeywell c300 Firmware
Honeywell c300
CWE CWE-787
CPE cpe:2.3:h:honeywell:c300:-:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*

13 Jul 2023, 12:51

Type Values Removed Values Added
New CVE

Information

Published : 2023-07-13 12:15

Updated : 2024-11-21 07:51


NVD link : CVE-2023-26597

Mitre link : CVE-2023-26597

CVE.ORG link : CVE-2023-26597


JSON object : View

Products Affected

honeywell

  • c300
  • c300_firmware
CWE
CWE-400

Uncontrolled Resource Consumption

CWE-787

Out-of-bounds Write