PT-2023-7223 · Honeywell · Honeywell Prowatch

Published

2023-11-17

Updated

2023-11-25

CVE-2023-6179

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Honeywell ProWatch versions 4.5 and earlier

Description The issue is related to errors in data processing, which could allow an attacker to execute arbitrary system code. This could potentially lead to a standard user gaining arbitrary system code execution capabilities.

Recommendations For Honeywell ProWatch version 4.5, update to version 5.0.5, 5.5.2, 6.0, or 6.0.2 to resolve the issue.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

BDU:2023-08251

CVE-2023-6179

Affected Products

Honeywell Prowatch

PT-2023-7223 · Honeywell · Honeywell Prowatch

CVE-2023-6179

Weakness Enumeration

Related Identifiers

Affected Products

References · 7