An attacker could potentially exploit this vulnerability, leading to files being read from the Honeywell Experion ControlEdge VirtualUOC and ControlEdge UOC. This exploit could be used to read files from the controller that may expose limited information from the device. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and versioning.
References
Link | Resource |
---|---|
https://process.honeywell.com | Product |
https://www.honeywell.com/us/en/product-security | Not Applicable |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Honeywell
Published: 2024-01-31T17:46:39.809Z
Updated: 2024-07-09T19:56:46.965Z
Reserved: 2023-10-04T17:50:05.792Z
Link: CVE-2023-5390
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-01-31T18:15:46.780
Modified: 2024-02-08T17:18:46.787
Link: CVE-2023-5390
JSON object: View
Redhat Information
No data.