Skip to main content

C300 Firmware

4 CVEs product

Monthly

CVE-2023-26597 HIGH This Week

Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controller. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Honeywell C300 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2023-25770 HIGH This Week

Controller DoS may occur due to buffer overflow when an error is generated in response to a specially crafted message. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Honeywell Deserialization C300 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-25178 CRITICAL Act Now

Controller may be loaded with malicious firmware which could enable remote code execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Honeywell C300 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2023-24480 HIGH This Week

Controller DoS due to stack overflow when decoding a message from the server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Honeywell C300 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.6%
EPSS 1% CVSS 7.5
HIGH This Week

Controller DoS due to buffer overflow in the handling of a specially crafted message received by the controller. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Honeywell +1
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Controller DoS may occur due to buffer overflow when an error is generated in response to a specially crafted message. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Honeywell Deserialization +1
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

Controller may be loaded with malicious firmware which could enable remote code execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Honeywell C300 Firmware
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Controller DoS due to stack overflow when decoding a message from the server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Honeywell C300 Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy