CVE-2022-30242

Name of the Vulnerable Software and Affected Versions Honeywell Alerton Ascent Control Module (ACM) versions prior to 2022-05-04

Description The issue allows unauthenticated configuration changes from remote users, enabling configuration data to be stored on the controller and then implemented. A user with malicious intent can send a crafted packet to change the controller configuration without the knowledge of other users, altering the controller's function capabilities. The changed configuration is not updated in the User Interface, which creates an inconsistency between the configuration display and the actual configuration on the controller. Remediation requires reverting to the correct configuration, requiring either physical or remote access depending on the configuration that was altered.

Recommendations For versions prior to 2022-05-04, revert to the correct configuration after a configuration change, requiring either physical or remote access depending on the configuration that was altered. As a temporary workaround, consider restricting remote access to the controller until a patch is available. Restrict access to the controller's configuration capabilities to minimize the risk of exploitation. Avoid using the controller's configuration capabilities until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.