267 matches found
CVE-2025-3947
The CVE-2025-3947 issue affects Honeywell Experion PKS CDA (Control Data Access) with an integer underflow, enabling input data manipulation that could cause denial of service. Affected products include C300 PCNT02/05, FIM4/8, UOC, CN100, HCA, C300PM, C200E; affected PKS versions are 520.1–520.2 ...
CVE-2025-3946 Incorrect response generation during FTEB protocol processing
The Honeywell Experion PKS and OneWireless WDM contains a Deployment of Wrong Handler vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in incorrect handling of packets leading t...
CVE-2025-3946 Incorrect response generation during FTEB protocol processing
The Honeywell Experion PKS and OneWireless WDM contains a Deployment of Wrong Handler vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in incorrect handling of packets leading t...
CVE-2025-3946
CVE-2025-3946 affects Honeywell Experion PKS and OneWireless WDM. A Deployment of Wrong Handler in the Control Data Access (CDA) can cause Input Data Manipulation and potentially remote code execution. Affected: Experion PKS on 520.1–520.2 TCU9 and 530–530 TCU3; OneWireless WDM on 322.1–322.4 and...
CVE-2025-2523 Lack of buffer clearing before reuse may result in incorrect system behavior.
The Honeywell Experion PKS and OneWireless WDM contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result in a failure during subtraction allowi...
CVE-2025-2523
CVE-2025-2523 affects Honeywell Experion PKS and OneWireless WDM. The issue is an Integer Underflow in the Control Data Access (CDA) component that can lead to Communication Channel Manipulation and, as stated, a potential remote code execution. Affected Experion PKS versions are 520.1–520.2 TCU9...
CVE-2025-2523 Lack of buffer clearing before reuse may result in incorrect system behavior.
The Honeywell Experion PKS and OneWireless WDM contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result in a failure during subtraction allowi...
CVE-2025-2520
The Honeywell Experion PKS contains an Uninitialized Variable in the common Epic Platform Analyzer EPA communications. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which results in a dereferencing of an uninitialized pointer leading to...
CVE-2025-2522 Lack of buffer clearing before reuse may result in incorrect system behavior.
The Honeywell Experion PKS and OneWireless WDM contains Sensitive Information in Resource vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result in buffer reuse which may...
CVE-2025-2522
The CVE-2025-2522 issue affects Honeywell Honeywell Experion PKS and OneWireless WDM, specifically in the Control Data Access (CDA) component. The vulnerability is described as a sensitive information in resource vulnerability that could be exploited to cause a communication channel manipulation ...
CVE-2025-2522 Lack of buffer clearing before reuse may result in incorrect system behavior.
The Honeywell Experion PKS and OneWireless WDM contains Sensitive Information in Resource vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result in buffer reuse which may...
CVE-2025-2521 Lack of indexes’ validation against buffer borders leads to remote code execution.
The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to an Overread Buffers, which could result in improper index validation against buffer borders leading ...
CVE-2025-2521
CVE-2025-2521 concerns a memory buffer vulnerability in the Control Data Access (CDA) component of Honeywell’s Experion PKS and OneWireless WDM . The issue is an overread of buffers due to lack of proper index validation against buffer borders, which could lead to remote code execution . Affected...
CVE-2025-2521 Lack of indexes’ validation against buffer borders leads to remote code execution.
The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to an Overread Buffers, which could result in improper index validation against buffer borders leading ...
CVE-2025-2520 Dereferencing of an uninitialized pointer leads to denial of service.
The Honeywell Experion PKS contains an Uninitialized Variable in the common Epic Platform Analyzer EPA communications. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which results in a dereferencing of an uninitialized pointer leading to...
CVE-2025-2520 Dereferencing of an uninitialized pointer leads to denial of service.
The Honeywell Experion PKS contains an Uninitialized Variable in the common Epic Platform Analyzer EPA communications. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which results in a dereferencing of an uninitialized pointer leading to...
CVE-2025-2520
CVE-2025-2520 affects Honeywell Experion PKS. The root cause is an uninitialized variable in the common Epic Platform Analyzer (EPA) communications, which could allow an attacker to perform Communication Channel Manipulation and dereference an uninitialized pointer, leading to a denial of service...
Honeywell Experion PKS 安全漏洞
Honeywell Experion PKS is a process automation system from Honeywell USA. A security vulnerability exists in Honeywell Experion PKS versions 520.1 through 520.2 TCU9 and 530 through 530 TCU3 and OneWireless WDM versions 322.1 through 322.4 and 330.1 through 330.3, which stems from a faulty handle...
Honeywell Experion PKS 数字错误漏洞
Honeywell Experion PKS is a process automation system from Honeywell USA. A security vulnerability exists in Honeywell Experion PKS versions 520.1 through 520.2 TCU9 and 530 through 530 TCU3 and OneWireless WDM versions 322.1 through 322.4 and 330.1 through 330.3, which stems from an integer...
Honeywell Experion PKS 安全漏洞
Honeywell Experion PKS is a process automation system from Honeywell USA. A security vulnerability exists in Honeywell Experion PKS versions 520.1 to 520.2 TCU9 and 530 to 530 TCU3, which stems from uninitialized variables and could result in a denial of service...