PT-2019-7131 · Honeywell · Honeywell Experion Pks

Published

2019-04-08

Updated

2019-10-09

CVE-2014-5435

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Honeywell Experion PKS versions prior to R400.6 Honeywell Experion PKS versions prior to R410.6 Honeywell Experion PKS versions prior to R430.2

Description An arbitrary memory write issue exists in the dual onsrv.exe module that could lead to possible remote code execution or denial of service.

Recommendations For versions prior to R400.6, upgrade to version R400.6 or later. For versions prior to R410.6, upgrade to version R410.6 or later. For versions prior to R430.2, upgrade to version R430.2 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-123CWE-787

Related Identifiers

CVE-2014-5435

Affected Products

Honeywell Experion Pks

PT-2019-7131 · Honeywell · Honeywell Experion Pks

CVE-2014-5435

Weakness Enumeration

Related Identifiers

Affected Products

References · 2