CVE-2023-26597

Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controller. See Honeywell Security Notification for recommendations on upgrading and versioning. See Honeywell Security Notification for recommendations on upgrading and versioning.
References
Link Resource
https://process.honeywell.com Product
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:honeywell:c300:-:*:*:*:*:*:*:*

History

22 Apr 2024, 16:15

Type Values Removed Values Added
Summary (en) Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controller. (en) Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controller. See Honeywell Security Notification for recommendations on upgrading and versioning. See Honeywell Security Notification for recommendations on upgrading and versioning.

25 Jul 2023, 19:00

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
References (MISC) https://process.honeywell.com - (MISC) https://process.honeywell.com - Product
CPE cpe:2.3:h:honeywell:c300:-:*:*:*:*:*:*:*
cpe:2.3:o:honeywell:c300_firmware:*:*:*:*:*:*:*:*
First Time Honeywell
Honeywell c300 Firmware
Honeywell c300
CWE CWE-787

13 Jul 2023, 12:51

Type Values Removed Values Added
New CVE

Information

Published : 2023-07-13 12:15

Updated : 2024-04-22 16:15


NVD link : CVE-2023-26597

Mitre link : CVE-2023-26597

CVE.ORG link : CVE-2023-26597


JSON object : View

Products Affected

honeywell

  • c300
  • c300_firmware
CWE
CWE-787

Out-of-bounds Write

CWE-400

Uncontrolled Resource Consumption