Lucene search
+L

267 matches found

CVE
CVE
added 2025/07/10 8:19 p.m.63 views

CVE-2025-3947

The CVE-2025-3947 issue affects Honeywell Experion PKS CDA (Control Data Access) with an integer underflow, enabling input data manipulation that could cause denial of service. Affected products include C300 PCNT02/05, FIM4/8, UOC, CN100, HCA, C300PM, C200E; affected PKS versions are 520.1–520.2 ...

8.2CVSS7AI score0.00315EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/10 8:16 p.m.3 views

CVE-2025-3946 Incorrect response generation during FTEB protocol processing

The Honeywell Experion PKS and OneWireless WDM contains a Deployment of Wrong Handler vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in incorrect handling of packets leading t...

8.2CVSS7.6AI score0.00468EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/10 8:16 p.m.17 views

CVE-2025-3946 Incorrect response generation during FTEB protocol processing

The Honeywell Experion PKS and OneWireless WDM contains a Deployment of Wrong Handler vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in incorrect handling of packets leading t...

8.2CVSS0.00468EPSS
Exploits0References1
CVE
CVE
added 2025/07/10 8:16 p.m.70 views

CVE-2025-3946

CVE-2025-3946 affects Honeywell Experion PKS and OneWireless WDM. A Deployment of Wrong Handler in the Control Data Access (CDA) can cause Input Data Manipulation and potentially remote code execution. Affected: Experion PKS on 520.1–520.2 TCU9 and 530–530 TCU3; OneWireless WDM on 322.1–322.4 and...

8.2CVSS7.6AI score0.00468EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/10 8:15 p.m.14 views

CVE-2025-2523 Lack of buffer clearing before reuse may result in incorrect system behavior.

The Honeywell Experion PKS and OneWireless WDM contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result in a failure during subtraction allowi...

9.4CVSS7.6AI score0.00685EPSS
Exploits0References1
CVE
CVE
added 2025/07/10 8:15 p.m.79 views

CVE-2025-2523

CVE-2025-2523 affects Honeywell Experion PKS and OneWireless WDM. The issue is an Integer Underflow in the Control Data Access (CDA) component that can lead to Communication Channel Manipulation and, as stated, a potential remote code execution. Affected Experion PKS versions are 520.1–520.2 TCU9...

9.4CVSS7.6AI score0.00685EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/10 8:15 p.m.17 views

CVE-2025-2523 Lack of buffer clearing before reuse may result in incorrect system behavior.

The Honeywell Experion PKS and OneWireless WDM contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result in a failure during subtraction allowi...

9.4CVSS0.00685EPSS
Exploits0References1
NVD
NVD
added 2025/07/10 8:15 p.m.13 views

CVE-2025-2520

The Honeywell Experion PKS contains an Uninitialized Variable in the common Epic Platform Analyzer EPA communications. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which results in a dereferencing of an uninitialized pointer leading to...

7.5CVSS0.00362EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/10 8:11 p.m.3 views

CVE-2025-2522 Lack of buffer clearing before reuse may result in incorrect system behavior.

The Honeywell Experion PKS and OneWireless WDM contains Sensitive Information in Resource vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result in buffer reuse which may...

6.5CVSS7.2AI score0.00231EPSS
Exploits0References1
CVE
CVE
added 2025/07/10 8:11 p.m.65 views

CVE-2025-2522

The CVE-2025-2522 issue affects Honeywell Honeywell Experion PKS and OneWireless WDM, specifically in the Control Data Access (CDA) component. The vulnerability is described as a sensitive information in resource vulnerability that could be exploited to cause a communication channel manipulation ...

6.5CVSS7.2AI score0.00231EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/10 8:11 p.m.17 views

CVE-2025-2522 Lack of buffer clearing before reuse may result in incorrect system behavior.

The Honeywell Experion PKS and OneWireless WDM contains Sensitive Information in Resource vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result in buffer reuse which may...

6.5CVSS0.00231EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/10 8:8 p.m.4 views

CVE-2025-2521 Lack of indexes’ validation against buffer borders leads to remote code execution.

The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to an Overread Buffers, which could result in improper index validation against buffer borders leading ...

8.6CVSS7.9AI score0.00423EPSS
Exploits0References1
CVE
CVE
added 2025/07/10 8:8 p.m.94 views

CVE-2025-2521

CVE-2025-2521 concerns a memory buffer vulnerability in the Control Data Access (CDA) component of Honeywell’s Experion PKS and OneWireless WDM . The issue is an overread of buffers due to lack of proper index validation against buffer borders, which could lead to remote code execution . Affected...

8.6CVSS7.9AI score0.00423EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/10 8:8 p.m.14 views

CVE-2025-2521 Lack of indexes’ validation against buffer borders leads to remote code execution.

The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to an Overread Buffers, which could result in improper index validation against buffer borders leading ...

8.6CVSS0.00423EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/10 7:54 p.m.5 views

CVE-2025-2520 Dereferencing of an uninitialized pointer leads to denial of service.

The Honeywell Experion PKS contains an Uninitialized Variable in the common Epic Platform Analyzer EPA communications. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which results in a dereferencing of an uninitialized pointer leading to...

7.5CVSS7.1AI score0.00362EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/10 7:54 p.m.16 views

CVE-2025-2520 Dereferencing of an uninitialized pointer leads to denial of service.

The Honeywell Experion PKS contains an Uninitialized Variable in the common Epic Platform Analyzer EPA communications. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which results in a dereferencing of an uninitialized pointer leading to...

7.5CVSS0.00362EPSS
Exploits0References1
CVE
CVE
added 2025/07/10 7:54 p.m.91 views

CVE-2025-2520

CVE-2025-2520 affects Honeywell Experion PKS. The root cause is an uninitialized variable in the common Epic Platform Analyzer (EPA) communications, which could allow an attacker to perform Communication Channel Manipulation and dereference an uninitialized pointer, leading to a denial of service...

7.5CVSS7.1AI score0.00362EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.6 views

Honeywell Experion PKS 安全漏洞

Honeywell Experion PKS is a process automation system from Honeywell USA. A security vulnerability exists in Honeywell Experion PKS versions 520.1 through 520.2 TCU9 and 530 through 530 TCU3 and OneWireless WDM versions 322.1 through 322.4 and 330.1 through 330.3, which stems from a faulty handle...

8.2CVSS7.6AI score0.00468EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.6 views

Honeywell Experion PKS 数字错误漏洞

Honeywell Experion PKS is a process automation system from Honeywell USA. A security vulnerability exists in Honeywell Experion PKS versions 520.1 through 520.2 TCU9 and 530 through 530 TCU3 and OneWireless WDM versions 322.1 through 322.4 and 330.1 through 330.3, which stems from an integer...

9.4CVSS8AI score0.00685EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.6 views

Honeywell Experion PKS 安全漏洞

Honeywell Experion PKS is a process automation system from Honeywell USA. A security vulnerability exists in Honeywell Experion PKS versions 520.1 to 520.2 TCU9 and 530 to 530 TCU3, which stems from uninitialized variables and could result in a denial of service...

7.5CVSS6.5AI score0.00362EPSS
Exploits0References3
Rows per page
Query Builder