Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC

View CSAF

1. EXECUTIVE SUMMARY

• CVSS v3 9.1
• ATTENTION: Exploitable remotely/low attack complexity
• Vendor: Honeywell
• Equipment: Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC
• Vulnerabilities: Exposed Dangerous Method or Function, Absolute Path Traversal, Stack-based Buffer Overflow, Debug Messages Revealing Unnecessary Information, Out-of-bounds Write, Heap-based Buffer Overflow, Binding to an Unrestricted IP Address, Improper Input Validation, Buffer Access with Incorrect Length Value, Improper Restriction of Operations within the Bounds of a Memory Buffer, Improper Handling of Length Parameter Inconsistency

2. RISK EVALUATION

Successful exploitation of these vulnerabilities could disclose sensitive information, allow privilege escalation, or allow remote code execution.

3. TECHNICAL DETAILS

3.1 AFFECTED PRODUCTS

Honeywell reports these vulnerabilities affect the following versions of Experion PKS, LX, PlantCruise, Safety Manager, and Safety Manager SC:

• Experion PKS: All releases prior to R510.2 HF14
• Experion PKS: All releases prior to R511.5 TCU4 HF4
• Experion PKS: All releases prior to R520.1 TCU5
• Experion PKS: All releases prior to R520.2 TCU4 HF2
• Experion LX: All releases prior to R511.5 TCU4 HF4
• Experion LX: All releases prior to R520.1 TCU5
• Experion LX: All releases prior to R520.2 TCU4 HF2
• PlantCruise by Experion: All releases prior to R511.5 TCU4 HF4
• PlantCruise by Experion: All releases prior to R520.1 TCU5
• PlantCruise by Experion: All releases prior to R520.2 TCU4 HF2
• Safety Manager: R15x, R16x up to and including R162.10
• Safety Manager SC: R210.X, R211.1, R211.2, R212.1

3.2 Vulnerability Overview

3.2.1 Exposed Dangerous Method or Function CWE-749

Successful exploitation of this vulnerability could allow an

[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.