PT-2023-25788 · Honeywell · Honeywell Pm43
Jinqi Lai
·
Published
2023-09-12
·
Updated
2025-09-12
·
CVE-2023-3711
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Honeywell PM43 versions prior to P10.19.050004
Description
The issue affects the printer web page modules of Honeywell PM43 on 32 bit, ARM, allowing Session Credential Falsification through Prediction due to a Session Fixation vulnerability.
Recommendations
Update to the latest available firmware version of the respective printers to version MR19.5 (e.g. P10.19.050006) to resolve the issue.
Fix
Session Fixation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Honeywell Pm43