CVE-2023-25770

Name of the Vulnerable Software and Affected Versions Honeywell Experion PKS versions (affected versions not specified) Honeywell Experion LX versions (affected versions not specified) Experion PlantCruise versions (affected versions not specified)

Description The issue is related to the restoration of invalid data in memory, which can be exploited by a remote attacker to execute arbitrary code. A denial-of-service (DoS) condition may occur due to a buffer overflow when an error is generated in response to a specially crafted message.

Recommendations For Honeywell Experion PKS, refer to the Honeywell Security Notification for recommendations on upgrading and versioning. For Honeywell Experion LX, refer to the Honeywell Security Notification for recommendations on upgrading and versioning. For Experion PlantCruise, refer to the Honeywell Security Notification for recommendations on upgrading and versioning. At the moment, there is no information about a newer version that contains a fix for this vulnerability.