Skip to main content

Pm43 Firmware

3 CVEs product

Monthly

CVE-2023-3712 HIGH This Week

Files or Directories Accessible to External Parties vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Privilege Escalation.19.050004. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Path Traversal Information Disclosure Privilege Escalation Honeywell Pm43 Firmware
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2023-3711 HIGH This Week

Session Fixation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Session Credential Falsification through Prediction.19.050004. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Session Fixation Honeywell Pm43 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-3710 CRITICAL POC THREAT Act Now

Improper Input Validation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Command Injection.19.050004. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Honeywell Command Injection Pm43 Firmware
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
33.1%
EPSS 1% CVSS 7.8
HIGH This Week

Files or Directories Accessible to External Parties vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Privilege Escalation.19.050004. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Path Traversal Information Disclosure Privilege Escalation +2
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Session Fixation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Session Credential Falsification through Prediction.19.050004. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Session Fixation Honeywell +1
NVD
EPSS 33% CVSS 9.8
CRITICAL POC THREAT Act Now

Improper Input Validation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Command Injection.19.050004. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Honeywell Command Injection Pm43 Firmware
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy