CVE-2023-5407

Name of the Vulnerable Software and Affected Versions Honeywell C300 (affected versions not specified)

Description The issue is related to a denial of service due to improper handling of a specially crafted message received by the controller. This can be exploited remotely. There is a critical stack-based buffer overflow vulnerability. It is recommended to review network logs for signs of compromise and limit external access to the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider limiting external access to the system to minimize the risk of exploitation. Restrict access to the Message Handler module to minimize the risk of exploitation. Review network logs for signs of compromise.