CVE-2021-38397 CRITICAL

Published: 2022-10-28 | Last Modified: 2024-11-21 | Status: Modified

Description

Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file uploads, which may allow an attacker to remotely execute arbitrary code and cause a denial-of-service condition.

Additional Descriptions (1)

Los controladores Honeywell Experion PKS C200, C200E, C300 y ACE son vulnerables a la carga de archivos sin restricciones, lo que puede permitir a un atacante ejecutar código arbitrario de forma remota y provocar una condición de Denegación de Servicio.

CVSS Metrics

Base Score: 10.0 (CRITICAL)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Attack Vector	NETWORK
Attack Complexity	LOW
Privileges Required	NONE
User Interaction	NONE
Scope	CHANGED
Confidentiality Impact	HIGH
Integrity Impact	HIGH
Availability Impact	HIGH

Source: [email protected]

Type: Primary

Exploitability Score: 3.9

Impact Score: 6.0

Weaknesses

Source	Type	Description
[email protected]	Secondary	en CWE-434
[email protected]	Primary	en CWE-434

Affected Products

Vendor	Product	Version	Update	Type
honeywell	c200_firmware	-	<built-in method update of dict object at 0x7c3c2ab10140>	Operating System
honeywell	c200e_firmware	-	<built-in method update of dict object at 0x7c3bf3b62080>	Operating System
honeywell	c300_firmware	-	<built-in method update of dict object at 0x7c3c483ca3c0>	Operating System
honeywell	application_control_environment_firmware	-	<built-in method update of dict object at 0x7c3c483cb740>	Operating System

Affected Configurations

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:honeywell:c200_firmware:-:::::::*`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:honeywell:c200:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:honeywell:c200e_firmware:-:::::::*`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:honeywell:c200e:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:honeywell:c300_firmware:-:::::::*`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:honeywell:c300:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:honeywell:application_control_environment_firmware:-:::::::*`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:honeywell:application_control_environment:-:::::::*`

References

https://www.cisa.gov/uscert/ics/advisories/icsa-21-278-04
Source: [email protected]

Third Party Advisory US Government Resource
https://www.honeywellprocess.com/library/support/notifications/Customer/SN2021-02-22-01-Experion-C300-CCL.pdf
Source: [email protected]

Product
https://www.cisa.gov/uscert/ics/advisories/icsa-21-278-04
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory US Government Resource
https://www.honeywellprocess.com/library/support/notifications/Customer/SN2021-02-22-01-Experion-C300-CCL.pdf
Source: af854a3a-2127-422b-91ae-364da2661108

Product