Honeywell Notifier Web Server (NWS) Version 3.50 is vulnerable to a path traversal attack, which allows an attacker to bypass access to restricted directories. Honeywell has released a firmware update to address the problem.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsa-20-051-03 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2020-04-07T17:06:02
Updated: 2020-04-07T17:06:02
Reserved: 2020-01-14T00:00:00
Link: CVE-2020-6974
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-04-07T18:15:13.773
Modified: 2020-04-09T20:10:44.973
Link: CVE-2020-6974
JSON object: View
Redhat Information
No data.
CWE