Page 3 of 17 results (0.006 seconds)

CVSS: 7.4EPSS: 0%CPEs: 10EXPL: 0

Server receiving a malformed message that where the GCL message hostname may be too large which may cause a stack overflow; resulting in possible remote code execution. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and versioning. El servidor recibe un mensaje con formato incorrecto que indica que el nombre de host del mensaje GCL puede ser demasiado grande, lo que puede provocar un desbordamiento de la pila; lo que resulta en una posible ejecución remota de código. Honeywell recomienda actualizar a la versión más reciente del producto. • https://process.honeywell.com • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.4EPSS: 0%CPEs: 6EXPL: 0

Server receiving a malformed message that causes a disconnect to a hostname may causing a stack overflow resulting in possible remote code execution. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and versioning. El servidor que recibe un mensaje con formato incorrecto que provoca una desconexión de un nombre de host puede provocar un desbordamiento de la pila, lo que resulta en una posible ejecución remota de código. Honeywell recomienda actualizar a la versión más reciente del producto. • https://process.honeywell.com • CWE-130: Improper Handling of Length Parameter Inconsistency •

CVSS: 7.5EPSS: 0%CPEs: 16EXPL: 0

Server information leak of configuration data when an error is generated in response to a specially crafted message. See Honeywell Security Notification for recommendations on upgrading and versioning. • https://process.honeywell.com • CWE-209: Generation of Error Message Containing Sensitive Information CWE-394: Unexpected Status Code or Return Value •

CVSS: 9.8EPSS: 0%CPEs: 16EXPL: 0

Server or Console Station DoS due to heap overflow occurring during the handling of a specially crafted message for a specific configuration operation.  See Honeywell Security Notification for recommendations on upgrading and versioning. • https://process.honeywell.com • CWE-787: Out-of-bounds Write •

CVSS: 7.5EPSS: 0%CPEs: 16EXPL: 0

Experion server may experience a DoS due to a heap overflow which could occur when handling a specially crafted message • https://process.honeywell.com • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •