Positive Technologies

Name of the Vulnerable Software and Affected Versions: Honeywell Experion PKS versions 520.1 through 520.2 TCU9 Honeywell Experion PKS versions 530 through 530 TCU3 Description: The Honeywell Experion PKS contains an uninitialized variable in the common Epic Platform Analyzer (EPA) communications. An attacker could exploit this issue, leading to a communication channel manipulation, which results in a dereferencing of an uninitialized pointer, causing a denial of service. Recommendations: Honeywell Experion PKS version 520.2 TCU9 HF1 Honeywell Experion PKS version 530.1 TCU3 HF1

Name of the Vulnerable Software and Affected Versions: Honeywell Experion PKS versions 520.1 through 520.2 TCU9 Honeywell Experion PKS versions 530 through 530 TCU3 Description: The Honeywell Experion PKS contains an integer underflow vulnerability in the Control Data Access (CDA) component. An attacker could exploit this vulnerability, leading to input data manipulation. This could result in improper integer data value checking during subtraction, potentially leading to a denial of service. Recommendations: Honeywell Experion PKS versions 520.1 through 520.2 TCU9: Update to version 520.2 TCU9 HF1. Honeywell Experion PKS versions 530 through 530 TCU3: Update to version 530.1 TCU3 HF1.

**Name of the Vulnerable Software and Affected Versions:** Honeywell Experion PKS versions 520.1 through 520.2 TCU9 Honeywell Experion PKS versions 530 through 530 TCU3 Honeywell OneWireless WDM versions 322.1 through 322.4 Honeywell OneWireless WDM versions 330.1 through 330.3 **Description:** The software contains a Deployment of Wrong Handler vulnerability in the Control Data Access (CDA) component. An attacker could potentially exploit this issue, leading to Input Data Manipulation, which could result in incorrect handling of packets and remote code execution. **Recommendations:** Honeywell Experion PKS versions 520.1 through 520.2 TCU9: Update to Honeywell Experion PKS 520.2 TCU9 HF1. Honeywell Experion PKS versions 530 through 530 TCU3: Update to Honeywell Experion PKS 530.1 TCU3 HF1. Honeywell OneWireless WDM versions 322.1 through 322.4: Update to OneWireless 322.5. Honeywell OneWireless WDM versions 330.1 through 330.3: Update to OneWireless 331.1.

**Name of the Vulnerable Software and Affected Versions:** Honeywell Experion PKS versions prior to 520.2 TCU9 HF1 and versions prior to 530 TCU3 Honeywell OneWireless WDM versions 322.1 through 322.4 Honeywell OneWireless WDM versions 330.1 through 330.3 Honeywell Experion PKS C300, FIM4, FIM8, UOC, CN100, HCA, C300PM, and C200E (affected versions not specified) **Description:** The Honeywell Experion PKS and OneWireless WDM contain a sensitive information vulnerability in the Control Data Access (CDA) component. An attacker could potentially exploit this issue, leading to communication channel manipulation and buffer reuse, which may cause incorrect system behavior. **Recommendations:** Honeywell Experion PKS versions prior to 520.2 TCU9 HF1: Update to version 520.2 TCU9 HF1. Honeywell Experion PKS versions prior to 530 TCU3: Update to version 530 TCU3. Honeywell OneWireless WDM versions 322.1 through 322.4: Update to version 322.5. Honeywell OneWireless WDM versions 330.1 through 330.3: Update to version 331.1.

**Name of the Vulnerable Software and Affected Versions:** Honeywell Experion PKS versions 520.1 through 520.2 TCU9 Honeywell Experion PKS versions 530 through 530 TCU3 Honeywell OneWireless WDM versions 322.1 through 322.4 Honeywell OneWireless WDM versions 330.1 through 330.3 **Description:** The Honeywell Experion PKS and OneWireless WDM contain a memory buffer vulnerability in the Control Data Access (CDA) component. This vulnerability could allow an attacker to perform an overread of buffers, potentially leading to improper index validation against buffer borders and resulting in remote code execution. The affected Experion PKS products are C300 PCNT02, C300 PCNT05, FIM4, FIM8, UOC, CN100, HCA, C300PM, and C200E. **Recommendations:** Honeywell Experion PKS versions 520.1 through 520.2 TCU9: Update to 520.2 TCU9 HF1. Honeywell Experion PKS versions 530 through 530 TCU3: Update to 530.1 TCU3 HF1. Honeywell OneWireless WDM versions 322.1 through 322.4: Update to 322.5. Honeywell OneWireless WDM versions 330.1 through 330.3: Update to 331.1.

**Name of the Vulnerable Software and Affected Versions:** Honeywell Experion PKS versions 520.1 through 520.2 TCU9 Honeywell Experion PKS versions 530 through 530 TCU3 Honeywell OneWireless WDM versions 322.1 through 322.4 Honeywell OneWireless WDM versions 330.1 through 330.3 Honeywell OneWireless WDM version 331.1 Honeywell Experion PKS version 520.2 TCU9 HF1 Honeywell Experion PKS version 530.1 TCU3 HF1 Honeywell OneWireless version 322.5 **Description:** The Honeywell Experion PKS and OneWireless WDM contain an integer underflow vulnerability in the Control Data Access (CDA) component. An attacker could exploit this vulnerability, leading to communication channel manipulation, potentially causing a failure during subtraction and allowing remote code execution. **Recommendations:** Honeywell Experion PKS versions 520.1 through 520.2 TCU9: Update to version 520.2 TCU9 HF1. Honeywell Experion PKS versions 530 through 530 TCU3: Update to version 530.1 TCU3 HF1. Honeywell OneWireless WDM versions 322.1 through 322.4: Update to version 322.5. Honeywell OneWireless WDM versions 330.1 through 330.3: Update to version 331.1.

**Name of the Vulnerable Software and Affected Versions** Elfatek Elektronics ANKA JPD-00028 versions through 19.03.2025 **Description** The issue is related to a Missing Critical Step in Authentication, which allows Authentication Bypass. The vendor has not informed about the completion of the fixing process within the specified time. **Recommendations** For ANKA JPD-00028 versions through 19.03.2025, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Elfatek Elektronics ANKA JPD-00028 versions through 19.03.2025 **Description** The issue is related to an authentication bypass by capture-replay vulnerability, which allows session hijacking. The vendor did not inform about the completion of the fixing process within the specified time. **Recommendations** For ANKA JPD-00028 versions through 19.03.2025, at the moment, there is no information about a newer version that contains a fix for this vulnerability.