IM
IronMonkey Threat Research
‹ Back to ICS Advisories

Product Security

UNKNOWN
CVSS 0.0
Date 2026-06-29T04:00:52+00:00
Source honeywell
Published by Honeywell

// Description

[![Image 1: Honeywell Technologies home](https://www.honeywell.com/content/dam/honcorp/us-en/common-assets/logos/hon-honeywell-technologies-logo-full-horizontal.svg)![Image 2: Honeywell Technologies Home](https://www.honeywell.com/content/dam/honcorp/us-en/common-assets/logos/hon-honeywell-technologies-logo-mini.svg)](https://www.honeywell.com/us/en/home) * [Who We Are](https://www.honeywell.com/us/en/legal/product-security# "Who We Are") * [About Honeywell Join Honeywell on the Journe

// Vulnerabilities (126)

CVE ID CVSS Score Severity Description
CVE-2023-51605 0.0 unknown
No description available.
CVE-2026-4272 0.0 unknown
No description available.
CVE-2019-13525 0.0 unknown
No description available.
CVE-2022-31485 0.0 unknown
An unauthenticated attacker can send a specially crafted packet to update the notes section on the home page of the web interface.CVE-2022-31485 has been assigned to this vulnerability. A CVSS v3 base score of 5.3 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).
CVE-2020-6978 0.0 unknown
The affected product is vulnerable due to the usage of old jQuery libraries.CVE-2020-6978 has been assigned to this vulnerability. A CVSS v3 base score of 7.2 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N).
CVE-2019-13523 0.0 unknown
No description available.
CVE-2022-2332 0.0 unknown
A local unprivileged attacker may escalate to administrator privileges, due to insecure permission assignment. CVE-2022-2332 has been assigned to this vulnerability. A CVSS v3 base score of 6.2 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N).
CVE-2023-3710 0.0 unknown
No description available.
CVE-2019-18226 0.0 unknown
No description available.
CVE-2022-31484 0.0 unknown
An unauthenticated attacker can send a specially crafted network packet to delete a user from the web interface.CVE-2022-31484 has been assigned to this vulnerability. A CVSS v3 base score of 7.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
CVE-2025-3944 0.0 unknown
No description available.
CVE-2023-51604 0.0 unknown
No description available.
CVE-2026-1670 0.0 unknown
The affected product is vulnerable to an unauthenticated API endpoint exposure that may allow an attacker to remotely change the "forgot password" recovery email address.
CVE-2015-7908 0.0 unknown
Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allow remote attackers to discover cleartext passwords by sniffing the network.
CVE-2020-6968 0.0 unknown
The affected product allows workstation users to escalate application user privileges through the modification of local configuration files.CVE-2020-6968 has been assigned to this vulnerability. A CVSS v3 base score of 6.6 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L).
CVE-2022-30314 0.0 unknown
The affected product access to the boot configuration is controlled by credentials hard-coded in the Safety Manger firmware. This could allow an attacker with serial interface access to control the boot process and manipulate the firmware image.
CVE-2023-3712 0.0 unknown
No description available.
CVE-2021-44228 0.0 unknown
CVE-2021-44228. Apache Log4j V2, versions < 2.15.0 do not protect JNDI features (as used in configuration, log messages, and parameters) against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters could execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled.
CVE-2022-2333 0.0 unknown
If an attacker manages to trick a valid user into loading a malicious DLL, the attacker may be able to achieve code execution in the application 's context and permissions. CVE-2022-2333 has been assigned to this vulnerability. A CVSS v3 base score of 8.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H).
CVE-2025-2605 0.0 unknown
No description available.
cve-2021-40438 0.0 unknown
No description available.
CVE-2023-51599 0.0 unknown
No description available.
CVE-2014-9187 0.0 unknown
Multiple heap-based buffer overflow vulnerabilities exist in Honeywell Experion PKS all versions prior to R400.6, all versions prior to R410.6, and all versions prior to R430.2 modules, which could lead to possible remote code execution or denial of service. Honeywell strongly encourages and recommends all customers running unsupported versions of EKPS prior to R400 to upgrade to a supported version.
CVE-2022-31482 0.0 unknown
An unauthenticated attacker can send a specially crafted unauthenticated HTTP request to the device that can overflow a buffer.CVE-2022-31482 has been assigned to this vulnerability. A CVSS v3 base score of 7.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
CVE-2020-11207 0.0 unknown
No description available.
CVE-2022-31483 0.0 unknown
An authenticated attacker can manipulate a filename to achieve the ability to upload the desired file anywhere on the filesystem.CVE-2022-31483 has been assigned to this vulnerability. A CVSS v3 base score of 9.1 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
CVE-2022-31480 0.0 unknown
An unauthenticated attacker could arbitrarily upload firmware files to the target device, ultimately causing a denial-of-service condition.CVE-2022-31480 has been assigned to this vulnerability. A CVSS v3 base score of 7.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
CVE-2022-30316 0.0 unknown
The affected product firmware images are not signed and only rely on insecure checksums for regular integrity checks. This could allow an attacker with access to the serial interface to control the boot process or push malicious firmware.
CVE-2017-5139 0.0 unknown
No description available.
CVE-2020-11201 0.0 unknown
No description available.
CVE-2022-4240 0.0 unknown
An unauthenticated API could allow an attacker to obtain the information about network resources. CVE-2022-4240 has been assigned to this vulnerability. A CVSS v3 base score of 8.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).
CVE-2020-11209 0.0 unknown
No description available.
CVE-2022-30317 0.0 unknown
The affected product uses the EpicMo protocol that does not have authentication features, which may allow an attacker with access to this protocol over a network to manipulate firmware or cause a denial-of-service condition.CVE-2022-30317 has been assigned to this vulnerability. A CVSS v3 base score of 9.1 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H).
CVE-2012-0254 0.0 unknown
Stack-based buffer overflow in the HMIWeb Browser HSCDSPRenderDLL ActiveX control in Honeywell Process Solutions (HPS) Experion R2xx, R30x, R31x, and R400.x; Honeywell Building Solutions (HBS) Enterprise Building Manager R400 and R410.1; and Honeywell Environmental Combustion and Controls (ECC) SymmetrE R410.1 allows remote attackers to execute arbitrary code via unspecified vectors.
CVE-2025-3945 0.0 unknown
No description available.
CVE-2015-0984 0.0 unknown
Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers before 2.04.01 allows remote attackers to read files under the web root, and consequently obtain administrative login access, via a crafted pathname.
CVE-2023-4863 0.0 unknown
CVE-2023-4863. The affected products are vulnerable to an out of bounds write vulnerability in the integrated libwebp library, that could be triggered while parsing specially crafted image files. This could allow an attacker to execute code in the context of a victim user's system. As a precondition, the user needs to add such image files, or Mendix Marketplace content that contains such image files, to their project. The exploitation happens in certain scenarios when the user opens the document that contains the image.
CVE-2016-2280 0.0 unknown
Buffer overflow in RDISERVER in Honeywell Uniformance Process History Database (PHD) R310, R320, and R321 allows remote attackers to cause a denial of service (service outage) via unspecified vectors.
CVE-2014-5435 0.0 unknown
An arbitrary memory write vulnerability exists in the dual_onsrv.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, that could lead to possible remote code execution or denial of service. Honeywell strongly encourages and recommends all customers running unsupported versions of EKPS prior to R400 to upgrade to a supported version.
CVE-2023-51603 0.0 unknown
No description available.
CVE-2022-22963 0.0 unknown
No description available.
CVE-2022-30319 0.0 unknown
The affected product uses the S-Bus protocol with authentication functions that can be controlled by the client MAC and IP. Because UDP is stateless, an attacker that can observe traffic can also spoof the MAC and IP of an authenticated client and manipulate the controller configuration.CVE-2022-30319 has been assigned to this vulnerability. A CVSS v3 base score of 7.6 has been assigned; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L).
CVE-2020-6960 0.0 unknown
CVE-2020-6960. A SQL injection vulnerability exists that could give an attacker remote unauthenticated access to the web user interface with administrator-level privileges.CVE-2020-6960 has been assigned to this vulnerability. A CVSS v3 base score of 9.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
CVE-2024-2422 0.0 unknown
LenelS2 NetBox access control and event monitoring system was discovered to contain an authenticated remote code execution in versions prior to and including 5.6.1, which allows an attacker to execute malicious commands.
CVE-2025-3938 0.0 unknown
No description available.
CVE-2023-51600 0.0 unknown
No description available.
CVE-2022-30320 0.0 unknown
The affected product uses the S-Bus write byte message to a specific address and supplies a hashed version of the password. The hashing algorithm is based on CRC-16 and, as such, is not cryptographically secure.CVE-2022-30320 has been assigned to this vulnerability. A CVSS v3 base score of 7.6 has been assigned; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L).
CVE-2025-3940 0.0 unknown
No description available.
CVE-2020-6959 0.0 unknown
CVE-2020-6959. The affected products are vulnerable to an unsafe deserialization of untrusted data. An attacker may be able to remotely modify deserialized data without authentication using a specially crafted web request, resulting in remote code execution.CVE-2020-6959 has been assigned to this vulnerability. A CVSS v3 base score of 9.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
CVE-2024-2420 0.0 unknown
LenelS2 NetBox access control and event monitoring system was discovered to contain hard-coded credentials in versions prior to and including 5.6.1, which allows an attacker to bypass authentication requirements.
CVE-2022-30318 0.0 unknown
The affected product root credentials are hard-coded and not changed automatically when first commissioned, which may allow an attacker with SSH access to the device to gain full control.CVE-2022-30318 has been assigned to this vulnerability. A CVSS v3 base score of 9.8 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
CVE-2013-0108 0.0 unknown
An ActiveX control in HscRemoteDeploy.dll in Honeywell Enterprise Buildings Integrator (EBI) R310, R400.2, R410.1, and R410.2; SymmetrE R310, R410.1, and R410.2; ComfortPoint Open Manager (aka CPO-M) Station R100; and HMIWeb Browser client packages allows remote attackers to execute arbitrary code via a crafted HTML document.
CVE-2021-38395 0.0 unknown
The affected product is vulnerable to improper neutralization of special elements in output, which may allow an attacker to remotely execute arbitrary code and cause a denial-of-service condition.CVE-2021-38395 has been assigned to this vulnerability. A CVSS v3 base score of 9.1 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H).
CVE-2015-7907 0.0 unknown
Directory traversal vulnerability in the web server on Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allows remote attackers to bypass authentication, and write to a configuration file or trigger a calibration or test, via unspecified vectors.
CVE-2020-27299 0.0 unknown
The affected product is vulnerable to an out-of-bounds read, which may allow an attacker to obtain and disclose sensitive data information or cause the device to crash.CVE-2020-27299 has been assigned to this vulnerability. A CVSS v3 base score of 8.2 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N).
CVE-2021-38399 0.0 unknown
The affected product is vulnerable to relative path traversal, which may allow an attacker access to unauthorized files and directories.CVE-2021-38399 has been assigned to this vulnerability. A CVSS v3 base score of 7.5 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).
CVE-2022-43485 0.0 unknown
This vulnerability exists due to an insufficiently secure random number used for generating keys, which is used for signing tokens. CVE-2022-43485 has been assigned to this vulnerability. A CVSS v3 base score of 6.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).
CVE-2022-31486 0.0 unknown
An authenticated attacker can send a specially crafted route to a specific binary causing it to execute shell commands.CVE-2022-31486 has been assigned to this vulnerability. A CVSS v3 base score 8.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).
CVE-2023-6590 0.0 unknown
No description available.
CVE-2019-5786 0.0 unknown
No description available.
CVE-2023-3711 0.0 unknown
No description available.
CVE-2025-3942 0.0 unknown
No description available.
CVE-2025-3937 0.0 unknown
No description available.
CVE-2022-30315 0.0 unknown
The affected product uses the unauthenticated Safety Builder protocol, which does not validate or authenticate the download logic. This could allow an attacker to preform remote code execution on the CPU module.
CVE-2023-28388 0.0 unknown
Uncontrolled search path element in some Intel(R) Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2017-5141 0.0 unknown
No description available.
CVE-2023-36483 0.0 unknown
No description available.
CVE-2024-23806 0.0 unknown
Sensitive data can be extracted from HID iCLASS SE reader configuration cards. This could include credential and device administrator keys.
CVE-2022-46361 0.0 unknown
While a backup is in progress, malicious users could enter a system command along with a backup configuration, which could result in the execution of unwanted commands. CVE-2022-46361 has been assigned to this vulnerability. A CVSS v3 base score of 9.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)).
CVE-2021-39364 0.0 unknown
No description available.
CVE-2020-27274 0.0 unknown
Some parsing functions in the affected product do not check the return value of malloc and the thread handling the message is forced to close, which may lead to a denial-of-service condition.CVE-2020-27274 has been assigned to this vulnerability. A CVSS v3 base score of 7.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
CVE-2020-14483 0.0 unknown
A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart to correct.CVE-2020-14483 has been assigned to this vulnerability. A CVSS v3 base score of 4.3 has been assigned; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).
CVE-2024-22338 0.0 unknown
No description available.
CVE-2020-11208 0.0 unknown
No description available.
CVE-2016-8344 0.0 unknown
An issue was discovered in Honeywell Experion Process Knowledge System (PKS) platform: Experion PKS, Release 3xx and prior, Experion PKS, Release 400, Experion PKS, Release 410, Experion PKS, Release 430, and Experion PKS, Release 431. Experion PKS does not properly validate input. By sending a specially crafted packet, an attacker could cause the process to terminate. A successful exploit would prevent firmware uploads to the Series-C devices.
CVE-2022-30313 0.0 unknown
The affected product utilizes the Safety Builder protocol, which does not have native authentication. An attacker capable of invoking the protocols' functionalities could cause configuration and system changes.
CVE-2020-6972 0.0 unknown
The Honeywell Fire Web Server 's authentication may be bypassed by a capture-replay attack from a web browser.CVE-2020-6972 has been assigned to this vulnerability. A CVSS v3 base score of 9.3 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N).
CVE-2007-6483 0.0 unknown
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.0.0 through 7.4.0 and possibly earlier versions, and Sentinel Keys Server 1.0.3 and possibly earlier versions, allows remote attackers to read arbitrary files via a .. (dot dot) in the query string.
CVE-2014-3110 0.0 unknown
Multiple cross-site scripting (XSS) vulnerabilities on Honeywell FALCON XLWeb Linux controller devices 2.04.01 and earlier and FALCON XLWeb XLWebExe controller devices 2.02.11 and earlier allow remote attackers to inject arbitrary web script or HTML via invalid input.
CVE-2019-18230 0.0 unknown
No description available.
CVE-2019-15126 0.0 unknown
CVE-2019-15126. An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic.
CVE-2020-11206 0.0 unknown
No description available.
CVE-2022-31481 0.0 unknown
An unauthenticated attacker can send a specially crafted update file to the device that can overflow a buffer.CVE-2022-31481 has been assigned to this vulnerability. A CVSS v3 base score of 10.0 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H).
CVE-2014-3566 0.0 unknown
No description available.
CVE-2023-1841 0.0 unknown
No description available.
CVE-2018-14825 0.0 unknown
No description available.
CVE-2014-9191 0.0 unknown
The CodeWrights HART Device Type Manager (DTM) library in Emerson HART DTM before 1.4.181 allows physically proximate attackers to cause a denial of service (DTM outage and FDT Frame application hang) by transmitting crafted response packets on the 4-20 mA current loop.
CVE-2019-18228 0.0 unknown
No description available.
CVE-2014-9189 0.0 unknown
Multiple stack-based buffer overflow vulnerabilities were found in Honeywell Experion PKS all versions prior to R400.6, all versions prior to R410.6, and all versions prior to R430.2 modules that could lead to possible remote code execution, dynamic memory corruption, or denial of service. Honeywell strongly encourages and recommends all customers running unsupported versions of EKPS prior to R400 to upgrade to a supported version.
CVE-2017-5142 0.0 unknown
No description available.
CVE-2014-2717 0.0 unknown
Honeywell FALCON XLWeb Linux controller devices 2.04.01 and earlier and FALCON XLWeb XLWebExe controller devices 2.02.11 and earlier allow remote attackers to bypass authentication and obtain administrative access by visiting the change-password page.
cve-2017-5753 0.0 unknown
No description available.
CVE-2025-3943 0.0 unknown
No description available.
CVE-2023-51601 0.0 unknown
No description available.
CVE-2020-7005 0.0 unknown
The affected product is vulnerable to a cross-site request forgery, which may allow an attacker to remotely execute arbitrary code.CVE-2020-7005 has been assigned to this vulnerability. A CVSS v3 base score of 8.1 has been calculated; the CVSS vector string is (AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).
CVE-2021-45046 0.0 unknown
CVE-2021-45046. The fix to address CVE-2021-44228 was incomplete in certain non-default configurations, when the logging configuration uses a non-default Pattern Layout with a Context Lookup (for example, ${ctx:loginId}). This could allow attackers with control over Thread Context Map (MDC) input data to craft malicious input data using a JNDI Lookup pattern, resulting in an information leak and remote code execution in some environments and local code execution in all environments.
CVE-2022-37026 0.0 unknown
No description available.
CVE-2014-5436 0.0 unknown
A directory traversal vulnerability exists in the confd.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, which could lead to possible information disclosure. Honeywell strongly encourages and recommends all customers running unsupported versions of EKPS prior to R400 to upgrade to a supported version.
CVE-2017-5140 0.0 unknown
No description available.
CVE-2025-3939 0.0 unknown
No description available.
CVE-2021-39363 0.0 unknown
No description available.
cve-2021-45105 0.0 unknown
No description available.
CVE-2020-27297 0.0 unknown
The affected product is vulnerable to a heap-based buffer overflow, which may allow an attacker to manipulate memory with controlled values and remotely execute code.CVE-2020-27297 has been assigned to this vulnerability. A CVSS v3 base score of 9.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
CVE-2022-31479 0.0 unknown
An unauthenticated attacker can update the hostname with a specially crafted name, allowing shell command execution during the core collection process.CVE-2022-31479 has been assigned to this vulnerability. A CVSS v3 base score of 9.6 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H).
CVE-2020-10624 0.0 unknown
The affected product exposes a session token on the network.CVE-2020-10624 has been assigned to this vulnerability. A CVSS v3 base score of 5.9 has been calculated; the CVSS vector string is (AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).
CVE-2017-5754 0.0 unknown
No description available.
cve-2014-3566 0.0 unknown
No description available.
CVE-2020-6982 0.0 unknown
The header injection vulnerability has been identified, which may allow remote code execution.CVE-2020-6982 has been assigned to this vulnerability. A CVSS v3 base score of 6.3 has been calculated; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L).
CVE-2017-5143 0.0 unknown
No description available.
CVE-2020-6974 0.0 unknown
The affected product is vulnerable to a path traversal attack, which allows an attacker to bypass access to restricted directories.CVE-2020-6974 has been assigned to this vulnerability. A CVSS v3 base score of 9.4 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L).
CVE-2021-45105 0.0 unknown
CVE-2021-45105. Apache Log4j2 versions 2.0-alpha1 through 2.16.0 did not protect from uncontrolled recursion from self-referential lookups, when the logging configuration uses a non-default Pattern Layout with a Context Lookup (for example, $${ctx:loginId}). This could allow attackers with control over Thread Context Map (MDC) input data to craft malicious input data that contains a recursive lookup, resulting in a denial of service condition.
CVE-2021-40438 0.0 unknown
CVE-2021-40438. A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
CVE-2021-22156 0.0 unknown
No description available.
CVE-2023-51602 0.0 unknown
No description available.
CVE-2025-3936 0.0 unknown
No description available.
CVE-2020-27295 0.0 unknown
The affected product has uncontrolled resource consumption issues, which may allow an attacker to cause a denial-of-service condition.CVE-2020-27295 has been assigned to this vulnerability. A CVSS v3 base score of 7.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
CVE-2017-5715 0.0 unknown
CVE-2017-5715. An attacker with local access to the system could potentially disclose information from protected memory areas via a side-channel attack on the processor cache.
cve-2017-5715 0.0 unknown
No description available.
CVE-2017-5753 0.0 unknown
No description available.
CVE-2025-3941 0.0 unknown
No description available.
CVE-2020-10628 0.0 unknown
The affected device exposes unencrypted passwords on the network.CVE-2020-10628 has been assigned to this vulnerability. A CVSS v3 base score of 5.9 has been calculated; the CVSS vector string is (AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).
CVE-2022-30312 0.0 unknown
Several Trend Controls IQ Series building automation controllers utilize an Inter-Controller (IC) protocol that uses a 4-digit authentication PIN transmitted in plaintext, allowing usernames and passwords to be transmitted in plaintext when utilizing unsupported legacy versions of the controller. This may allow an attacker with local OT network access to obtain these credentials.CVE-2022-30312 has been assigned to this vulnerability. A CVSS v3 base score of 7.1 has been assigned; the CVSS vector string is (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N).
CVE-2020-11202 0.0 unknown
No description available.
CVE-2014-9186 0.0 unknown
A file inclusion vulnerability exists in the confd.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, which could lead to accepting an arbitrary file into the function, and potential information disclosure or remote code execution. Honeywell strongly encourages and recommends all customers running unsupported versions of EKPS prior to R400 to upgrade to a supported version.
CVE-2021-38397 0.0 unknown
The affected product is vulnerable to unrestricted file uploads, which may allow an attacker to remotely execute arbitrary code and cause a denial-of-service condition.CVE-2021-38397 has been assigned to this vulnerability. A CVSS v3 base score of 10.0 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H).
CVE-2024-2421 0.0 unknown
LenelS2 NetBox access control and event monitoring system was discovered to contain an unauthenticated remote code execution in versions prior to and including 5.6.1, which allows an attacker to execute malicious commands with elevated permissions.

// Affected Products (9)

Vendor Product Asset Type Purdue Level Firmware
Honeywell Unknown dcs
L2
--
Honeywell Unknown dcs
L2
--
Honeywell Unknown dcs
L2
--
Honeywell Unknown dcs
L2
vers:all/*
Honeywell Unknown dcs
L2
--
Honeywell Unknown dcs
L2
--
Honeywell Unknown dcs
L2
--
Honeywell Unknown rtu
L1
R101 | R110 | R140 | R150 | R151
Honeywell Unknown plc
L1
R130.2 | R140 | R150 | R151

// Remediations (296)

Mitigation: Carrier recommends updating these access panels to the most current released firmware via the LenelS
Carrier recommends updating these access panels to the most current released firmware via the LenelS2 Partner Center. Please contact a Carrier support channel partner for instructions.
Mitigation: The controller can also be configured to disable web access, which prevents remote login into the co
The controller can also be configured to disable web access, which prevents remote login into the controller's webpage. To log in, see the specific instructions in CARR-PSA-006-0622
Mitigation: Carrier has published CARR-PSA-006-0622 to notify users about these vulnerabilities, providing addit
Carrier has published CARR-PSA-006-0622 to notify users about these vulnerabilities, providing additional mitigation instructions.
Mitigation: As a best practice, Honeywell recommends users isolate systems from the Internet or create additiona
As a best practice, Honeywell recommends users isolate systems from the Internet or create additional layers of defense to their system from the Internet by placing the affected hardware behind a firewall or into a DMZ.
Mitigation: Honeywell recommends users with potentially affected products take the following steps to protect th
Honeywell recommends users with potentially affected products take the following steps to protect themselves:
Mitigation: Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering
Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.
Mitigation: Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams.
Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams.
Mitigation: If remote connections to the network are required, consider using a VPN or other means to ensure sec
If remote connections to the network are required, consider using a VPN or other means to ensure secure remote connections into the network where the device is located.
Mitigation: Do not click web links or open unsolicited attachments in email messages.
Do not click web links or open unsolicited attachments in email messages.
Patch: Update WIN-PAK to latest version, WIN-PAK 4.7.2 B1072.3.4, before applying the patch, which is avail
Update WIN-PAK to latest version, WIN-PAK 4.7.2 B1072.3.4, before applying the patch, which is available on the Honeywell Mywebtech portal.
Mitigation: Update firmware of vulnerable and affected devices.
Update firmware of vulnerable and affected devices.
Mitigation: If remote connections to the network are required, then users should consider using a VPN or other m
If remote connections to the network are required, then users should consider using a VPN or other means to ensure secure remote connections into the network where the device is located.
Mitigation: Honeywell has released firmware update packages for the affected products on their website. Honeywel
Honeywell has released firmware update packages for the affected products on their website. Honeywell recommends users with potentially affected products take the following steps to protect themselves:
Mitigation: Isolate systems from the internet or create additional layers of defense to their system from the in
Isolate systems from the internet or create additional layers of defense to their system from the internet by placing the affected hardware behind a firewall or into a demilitarized zone (DMZ).
Mitigation: Honeywell recommends that users follow the guidance in product manuals and configure devices in a pr
Honeywell recommends that users follow the guidance in product manuals and configure devices in a protected IT environment, behind a firewall that is not accessible from untrusted networks. Users are advised to update to the current version through Honeywell customer service and technical support at https://www.honeywell.com/us/en/contact/support.
Mitigation: The affected product has been discontinued since April 2025. Honeywell recommends users contact Hone
The affected product has been discontinued since April 2025. Honeywell recommends users contact Honeywell customer service and technical support at https://www.honeywell.com/us/en/contact/support for patch information.
Mitigation: Update to the latest version. (http://www.honeywellanalytics.com/en-ca/products/Midas)
Update to the latest version. (http://www.honeywellanalytics.com/en-ca/products/Midas)
Mitigation: Apply defense-in-depth strategies.
Apply defense-in-depth strategies.
Mitigation: Honeywell encourages users to contact an INNCOM sales representative or authorized systems integrato
Honeywell encourages users to contact an INNCOM sales representative or authorized systems integrator to obtain information on upgrading their system(s) to the latest version. Honeywell also offers online INNCOM support. Additional information about the vulnerability can be found in the Honeywell Security Notification.
Mitigation: Restrict system access to authorized personnel only and follow a least privilege approach.
Restrict system access to authorized personnel only and follow a least privilege approach.
Mitigation: Update the software of potentially impacted systems as per the Security Notification.
Update the software of potentially impacted systems as per the Security Notification.
Mitigation: Disable unnecessary accounts and services.
Disable unnecessary accounts and services.
Mitigation: Honeywell recommends that, subject to each user's individual assessment of the potential impact(s) o
Honeywell recommends that, subject to each user's individual assessment of the potential impact(s) of the vulnerabilities and/or recommendations on their specific operational building control network environment(s), users with potentially affected products are recommended to take the following steps to mitigate the effects of potential vulnerabilities:
Patch: (CVE-2022-30316) Users are advised to follow the Safety Manager Release documentation. See the secti
(CVE-2022-30316) Users are advised to follow the Safety Manager Release documentation. See the section 'Security Recommendations and Best Practices'.
Patch: (CVE-2022-30314) Users are advised to follow the Safety Manager Release documentation. See the secti
(CVE-2022-30314) Users are advised to follow the Safety Manager Release documentation. See the section 'Security Recommendations and Best Practices'.
Mitigation: Honeywell has identified the following specific workarounds and mitigations users can apply to reduc
Honeywell has identified the following specific workarounds and mitigations users can apply to reduce risk:
Patch: (CVE-2022-30316) The Safety Manager key switch prevents unauthorized firmware from being installed.
(CVE-2022-30316) The Safety Manager key switch prevents unauthorized firmware from being installed. Users are advised to monitor the key switch position.
Patch: Upgrade PowerManage to Version 4.10
Upgrade PowerManage to Version 4.10
Patch: Update to V4.0.3 or later version
Update to V4.0.3 or later version
Patch: HEEDS Connect team will contact all impacted customers to deploy a new log4j version. This action wi
HEEDS Connect team will contact all impacted customers to deploy a new log4j version. This action will secure your installation against Log4Shell vulnerability. For further information see: https://support.sw.siemens.com/en-US/knowledge-base/PL8601661
Patch: Update to V5.1.8 or later version
Update to V5.1.8 or later version
Patch: Update to V3.0.30 or later version
Update to V3.0.30 or later version
Patch: Remove the JndiLookup class from the classpath. Detailed instructions are available at https://suppo
Remove the JndiLookup class from the classpath. Detailed instructions are available at https://support.industry.siemens.com/cs/ww/en/view/109805562/
Patch: Update to V4.2.0.2 or later version
Update to V4.2.0.2 or later version
Patch: Update to VX.2.8 Update 13 or later version
Update to VX.2.8 Update 13 or later version
Patch: Update to V13.17.2 was deployed on all cRSP services on 2021-12-21; no user actions necessary
Update to V13.17.2 was deployed on all cRSP services on 2021-12-21; no user actions necessary
Patch: Vulnerability CVE-2021-44228 fixed on central cloud service; no user actions necessary
Vulnerability CVE-2021-44228 fixed on central cloud service; no user actions necessary
Patch: Update to V4.70 SP9 Security Patch 1 or later version. Please contact your local Siemens representa
Update to V4.70 SP9 Security Patch 1 or later version. Please contact your local Siemens representative.
Patch: Update to V5.1 QU1 or later version
Update to V5.1 QU1 or later version
Patch: Update to V5.1 QU1 or later version
Update to V5.1 QU1 or later version
Patch: Update to VX.2.10 Update 4 or later version
Update to VX.2.10 Update 4 or later version
Patch: Update to V12.2.0.18 or later version
Update to V12.2.0.18 or later version
Patch: Update to V4.1.2 or later version
Update to V4.1.2 or later version
Patch: Update to V4.1.1.1 or later version
Update to V4.1.1.1 or later version
Patch: Remove the JndiLookup class from the classpath. Detailed instructions are available at https://suppo
Remove the JndiLookup class from the classpath. Detailed instructions are available at https://support.industry.siemens.com/cs/ww/en/view/109805562/
Patch: Update to V2021.1 SP2202 or later version
Update to V2021.1 SP2202 or later version
Patch: Update to V5.0.6 or later version
Update to V5.0.6 or later version
Patch: Update to VX.2.8 Update 13 or later version
Update to VX.2.8 Update 13 or later version
Patch: Vulnerabilities fixed on remote VPL server; no user actions necessary
Vulnerabilities fixed on remote VPL server; no user actions necessary
Patch: Update to V13.0.0.2 or later version
Update to V13.0.0.2 or later version
Patch: Simcenter Testlab Data Management team will contact all impacted customer to deploy the mitigation m
Simcenter Testlab Data Management team will contact all impacted customer to deploy the mitigation measures. This action will secure your installation against Log4Shell vulnerability. For further information see: https://support.sw.siemens.com/en-US/knowledge- base/PL8601418
Patch: Apply the patch. Please contact your local Siemens representative.
Apply the patch. Please contact your local Siemens representative.
Patch: Update to V12.3.0.15 or later version
Update to V12.3.0.15 or later version
Patch: Update to V12.1.0.14 or later version
Update to V12.1.0.14 or later version
Patch: Update to VX.2.10 Update 4 or later version
Update to VX.2.10 Update 4 or later version
Patch: Update to V2019.1 SP2204 or later version
Update to V2019.1 SP2204 or later version
Patch: Update to V12.3.11 or later version
Update to V12.3.11 or later version
Patch: Update to V13.0.0.9 or later version
Update to V13.0.0.9 or later version
Patch: Update to VX.2.10 Update 4 or later version
Update to VX.2.10 Update 4 or later version
Patch: Follow the remediation steps documented at https://ask.adaptec.com/app/answers/detail/a_id/17527/
Follow the remediation steps documented at https://ask.adaptec.com/app/answers/detail/a_id/17527/
Patch: Update to V2000.3400 or later version
Update to V2000.3400 or later version
Patch: Update to V12.2.8 or later version
Update to V12.2.8 or later version
Patch: Update to V5.2.3 or later version
Update to V5.2.3 or later version
Patch: Update to V5.1.5 or later version
Update to V5.1.5 or later version
Patch: Vulnerabilities fixed on central cloud service; no user actions necessary
Vulnerabilities fixed on central cloud service; no user actions necessary
Patch: Update to V5.2.4 or later version
Update to V5.2.4 or later version
Patch: Update to V12.4.0.12 or later version
Update to V12.4.0.12 or later version
Patch: Update to V13.3.0.1 or later version
Update to V13.3.0.1 or later version
Patch: A hotfix is available; please contact customer support to receive the hotfix
A hotfix is available; please contact customer support to receive the hotfix
Patch: Update to V4.0.0.2 or later version
Update to V4.0.0.2 or later version
Patch: Update the driver for the SmartRAID controller to V2.6.6 or later version, available at https://stor
Update the driver for the SmartRAID controller to V2.6.6 or later version, available at https://storage.microsemi.com/en- us/support/raid/sas_raid/asr-3151-4i/
Patch: Vulnerabilities fixed on central cloud service starting 2021-12-19; no user actions necessary
Vulnerabilities fixed on central cloud service starting 2021-12-19; no user actions necessary
Patch: Update to V2008 or later version
Update to V2008 or later version
Patch: Update to V2020.1 SP2202 or later version
Update to V2020.1 SP2202 or later version
Patch: Update to V2021.2.2 or later version
Update to V2021.2.2 or later version
Patch: Update to V3.0.29 or later version
Update to V3.0.29 or later version
Patch: Update to VX.2.10 Update 4 or later version
Update to VX.2.10 Update 4 or later version
Patch: Apply the hotfix
Apply the hotfix
Patch: Update Teamcenter to any fix version available for the different version lines of Teamcenter, see ht
Update Teamcenter to any fix version available for the different version lines of Teamcenter, see https://support.sw.siemens.com/en- US/knowledge-base/PL8600700
Patch: Update to V4.3.13 or later version
Update to V4.3.13 or later version
Patch: Update to V2.2.7 or later version; please contact customer support to receive the latest version
Update to V2.2.7 or later version; please contact customer support to receive the latest version
Patch: Update to V13.2.0.6 or later version
Update to V13.2.0.6 or later version
Patch: Apply the hotfix
Apply the hotfix
Patch: Update to V13.2.0.1 or later version
Update to V13.2.0.1 or later version
Patch: Apply the hotfix, available for versions V14.1, V15.0, V15.1, V15.1.2, V16.0, V16.0.1, V16.0.2, V16.
Apply the hotfix, available for versions V14.1, V15.0, V15.1, V15.1.2, V16.0, V16.0.1, V16.0.2, V16.1, V16.1.1, V16.1.2
Patch: Update to V4.3.3 or later version
Update to V4.3.3 or later version
Patch: Update to VX.2.7 Update 19 or later version
Update to VX.2.7 Update 19 or later version
Patch: Update to V13.1.0.1 or later version
Update to V13.1.0.1 or later version
Patch: Update to V12.4.1 or later version
Update to V12.4.1 or later version
Patch: Update to V5.2.4 or later version
Update to V5.2.4 or later version
Patch: Update to V5.0.11 or later version
Update to V5.0.11 or later version
Patch: Update to V2.3.2 or later version; please contact customer support to receive the latest version
Update to V2.3.2 or later version; please contact customer support to receive the latest version
Patch: Update to V1.7.18 or later version, as provided via cRSP V13.17.2 or later version
Update to V1.7.18 or later version, as provided via cRSP V13.17.2 or later version
Patch: Update to V3.3.0.7 or later version
Update to V3.3.0.7 or later version
Patch: Update to V13.1.0.8 or later version
Update to V13.1.0.8 or later version
Patch: Update to V2021.1 SP2202 or later version
Update to V2021.1 SP2202 or later version
Patch: Update to V2020.1 SP2202 or later version
Update to V2020.1 SP2202 or later version
Patch: Update to V1973.4340 or later version
Update to V1973.4340 or later version
Patch: Update to V4.2.3 or later version
Update to V4.2.3 or later version
Patch: Update to V5.2.6 or later version
Update to V5.2.6 or later version
Patch: Update to V13.0.1.2 or later version
Update to V13.0.1.2 or later version
Patch: Update Teamcenter to any fix version available for the different version lines of Teamcenter, see ht
Update Teamcenter to any fix version available for the different version lines of Teamcenter, see https://support.sw.siemens.com/en- US/knowledge-base/PL8600700
Patch: Update to V13.2.1.1 or V13.3.0.0 or later version
Update to V13.2.1.1 or V13.3.0.0 or later version
Patch: Download and install the updated TCCS setup from the Siemens Support Center; for details see https:/
Download and install the updated TCCS setup from the Siemens Support Center; for details see https://support.sw.siemens.com/knowledge- base/PL8615527
Patch: Update to VX.2.7 Update 19 or later version
Update to VX.2.7 Update 19 or later version
Patch: Follow the remediation steps documented at: https://support.sw.siemens.com/en-US/knowledge-base/PL86
Follow the remediation steps documented at: https://support.sw.siemens.com/en-US/knowledge-base/PL8602466
Patch: Vulnerabilities fixed with update on 2021-12-16; no user actions necessary
Vulnerabilities fixed with update on 2021-12-16; no user actions necessary
Patch: Update to V4.70 SP9 and apply Security Patch 1. Please contact your local Siemens representative.
Update to V4.70 SP9 and apply Security Patch 1. Please contact your local Siemens representative.
Mitigation: Additional information is available at https://support.sw.siemens.com/en-US/product/1644094854/knowl
Additional information is available at https://support.sw.siemens.com/en-US/product/1644094854/knowledge- base/MG618343
Mitigation: Find detailed remediation and mitigation information at: https://support.sw.siemens.com/knowledge-ba
Find detailed remediation and mitigation information at: https://support.sw.siemens.com/knowledge-base/MG618362
Patch: Find detailed remediation and mitigation information on the EnergyIP docs portal at: https://docs.em
Find detailed remediation and mitigation information on the EnergyIP docs portal at: https://docs.emeter.com/display/public/WELCOME/Energy IP+Security+Advisory+for+Log4Shell+Vulnerability
Patch: Vulnerabilities fixed for Vantage installations on a project basis; no user actions necessary
Vulnerabilities fixed for Vantage installations on a project basis; no user actions necessary
Patch: Remove the JndiLookup class from the classpath.
Remove the JndiLookup class from the classpath.
Patch: Update to V1.4.0-42 or later version
Update to V1.4.0-42 or later version
Patch: Update to V10.4.2 or later version
Update to V10.4.2 or later version
Patch: Update to V1.6 SP1 and apply the patch
Update to V1.6 SP1 and apply the patch
Mitigation: Stop and disable autostart for maxView Storage Manager WebServer. Note: This software is not require
Stop and disable autostart for maxView Storage Manager WebServer. Note: This software is not required for the underlying RAID to work
Mitigation: Find detailed remediation and mitigation information at: https://support.sw.siemens.com/en-US/knowle
Find detailed remediation and mitigation information at: https://support.sw.siemens.com/en-US/knowledge-base/PL8601468
Patch: Vulnerabilities fixed on central cloud services starting 2021-12-11; no user actions necessary
Vulnerabilities fixed on central cloud services starting 2021-12-11; no user actions necessary
Patch: Vulnerabilities fixed for Command installations on a project basis; no user actions necessary
Vulnerabilities fixed for Command installations on a project basis; no user actions necessary
Patch: Vulnerabilities fixed with update on 2021-12-21; no user actions necessary
Vulnerabilities fixed with update on 2021-12-21; no user actions necessary
Patch: Apply the patch
Apply the patch
Patch: Update to V21Q4 and apply the patch. Please contact your local Siemens representative.
Update to V21Q4 and apply the patch. Please contact your local Siemens representative.
Mitigation: For Comfy and Enlighted, see also chapter Additional Information below
For Comfy and Enlighted, see also chapter Additional Information below
Patch: Update to V4.4.1 or later version
Update to V4.4.1 or later version
Patch: Although the Cloud Foundry environment itself is not vulnerable to this exploit, we nevertheless rec
Although the Cloud Foundry environment itself is not vulnerable to this exploit, we nevertheless recommend to upgrade log4j-core to the latest available version if log4j-core is part of your project. https://support.sw.siemens.com/en-US/product/268530510/knowledge- base/PL8600797
Patch: Update to V18.1 or later version to fix CVE-2021-44228
Update to V18.1 or later version to fix CVE-2021-44228
Patch: Update to V2.85.7.5 or later version
Update to V2.85.7.5 or later version
Patch: Remove the JndiLookup class from the classpath. Detailed instructions are available at https://suppo
Remove the JndiLookup class from the classpath. Detailed instructions are available at https://support.industry.siemens.com/cs/ww/en/view/109805602/
Patch: Update to V1.4.11 or later version
Update to V1.4.11 or later version
Mitigation: Note: Earlier versions of the product contained a vulnerable version of log4j, but no risk for explo
Note: Earlier versions of the product contained a vulnerable version of log4j, but no risk for exploitation could be identified.
Mitigation: Note: EnergyIP V8.5 and V8.6 applications are not directly affected, but CAS is.
Note: EnergyIP V8.5 and V8.6 applications are not directly affected, but CAS is.
Patch: Update to V3.5 or later version
Update to V3.5 or later version
Patch: Vulnerability CVE-2021-44228 fixed on central cloud service starting 2021-12-13; no user actions nec
Vulnerability CVE-2021-44228 fixed on central cloud service starting 2021-12-13; no user actions necessary
Patch: Update to V8.6.2.472 or later version
Update to V8.6.2.472 or later version
Patch: Vulnerabilities fixed on central cloud service starting 2021-12-11; no user actions necessary
Vulnerabilities fixed on central cloud service starting 2021-12-11; no user actions necessary
Mitigation: Find detailed mitigation steps at: https://support.sw.siemens.com/en- US/knowledge-base/MG618363
Find detailed mitigation steps at: https://support.sw.siemens.com/en- US/knowledge-base/MG618363
Patch: Update to V1.5 SP4 and apply the patch
Update to V1.5 SP4 and apply the patch
Patch: Update to V6.3 or later version
Update to V6.3 or later version
Mitigation: If, for a particular product listed in the table above, no remediation or specific mitigation is giv
If, for a particular product listed in the table above, no remediation or specific mitigation is given: Block both incoming and outgoing connections between the system and the Internet.
Mitigation: Find detailed mitigation steps for both server and client installations at: https://support.sw.sieme
Find detailed mitigation steps for both server and client installations at: https://support.sw.siemens.com/en-US/knowledge- base/PL8602538
Patch: Specific fix versions based on V6.0.2 and V6.0.3 were released and deployed for all affected project
Specific fix versions based on V6.0.2 and V6.0.3 were released and deployed for all affected projects
Patch: Update to V13.0.1 or later version
Update to V13.0.1 or later version
Patch: Update to V2008 or later version
Update to V2008 or later version
Patch: Vulnerabilities fixed with update on 2021-12-23; no user actions necessary
Vulnerabilities fixed with update on 2021-12-23; no user actions necessary
Mitigation: Disable ports 8080/tcp and 8443/tcp in the firewall configuration of the IPC
Disable ports 8080/tcp and 8443/tcp in the firewall configuration of the IPC
Patch: Update to V2022 SP2202 or later version
Update to V2022 SP2202 or later version
Mitigation: Find detailed remediation and mitigation information at: https://support.sw.siemens.com/en-US/knowle
Find detailed remediation and mitigation information at: https://support.sw.siemens.com/en-US/knowledge-base/PL8600700
Patch: Although the Mendix runtime itself is not vulnerable to this exploit, we nevertheless recommend to u
Although the Mendix runtime itself is not vulnerable to this exploit, we nevertheless recommend to upgrade log4j-core to the latest available version if log4j-core is part of your project. This advice is regardless of the JRE/JDK version the app runs on.
Patch: Update to 2022.1-2008 or later version
Update to 2022.1-2008 or later version
Patch: Update the UAA component to V75.8.3
Update the UAA component to V75.8.3
Mitigation: Find detailed remediation and mitigation information at: https://support.sw.siemens.com/en-US/knowle
Find detailed remediation and mitigation information at: https://support.sw.siemens.com/en-US/knowledge-base/PL8601203
Mitigation: Note: EnergyIP V8.5 and V8.6 applications are not directly affected, but CAS is.
Note: EnergyIP V8.5 and V8.6 applications are not directly affected, but CAS is.
Patch: Vulnerabilities fixed on central cloud services starting 2021-12-10; no user actions necessary
Vulnerabilities fixed on central cloud services starting 2021-12-10; no user actions necessary
Patch: Vulnerabilities fixed on central cloud service between 2021-12-10 (CVE-2021-44228) and 2021-12-21 (C
Vulnerabilities fixed on central cloud service between 2021-12-10 (CVE-2021-44228) and 2021-12-21 (CVE-2021-45105); no user actions necessary
Mitigation: Check file system permissions
Check file system permissions
Mitigation: Restrict physical access to the local networks of the solution
Restrict physical access to the local networks of the solution
Mitigation: Review the status of the defense in depth recommendations that apply to your specific deployment and
Review the status of the defense in depth recommendations that apply to your specific deployment and align as needed. Especially the measures on the network layer to prevent accessibility from other network segments
Mitigation: Ensure that TraceAlertServerPLUS does not run with elevated privileges
Ensure that TraceAlertServerPLUS does not run with elevated privileges
Mitigation: Open TraceAlertServerPLUS.exe with Zip tool to remove file JndiLookup.class in directory org/apache/
Open TraceAlertServerPLUS.exe with Zip tool to remove file JndiLookup.class in directory org/apache/logging/log4j/core/lookup/. This measure mitigates both CVE-2021-44228 and CVE-2021-45046.
Mitigation: Ensure that SPPA-T3000 is set up according to the security concept defined in the SPPA-T3000 securit
Ensure that SPPA-T3000 is set up according to the security concept defined in the SPPA-T3000 security manual
Mitigation: Specific mitigations and how to apply are described in the SE Controls Security Announcement Inciden
Specific mitigations and how to apply are described in the SE Controls Security Announcement Incident 2021-01, available in the customer portal. https://cep.siemens-energy.com/cep/
Mitigation: Johnson Controls recommends upgrading exacq Enterprise Manager to Version 21.12.1 or apply manual mi
Johnson Controls recommends upgrading exacq Enterprise Manager to Version 21.12.1 or apply manual mitigation steps (available upon request).
Mitigation: Further ICS security notices and product security guidance are located at Johnson Controls product s
Further ICS security notices and product security guidance are located at Johnson Controls product security website.
Mitigation: Refer to the exacq Hardening Guide for guidance on isolating exacqVision NVRs and Enterprise Manager
Refer to the exacq Hardening Guide for guidance on isolating exacqVision NVRs and Enterprise Manager from public facing networks to reduce network exposure to attacks.
Mitigation: For more detailed mitigation instructions, please see Johnson Controls Product Security Advisory JCI
For more detailed mitigation instructions, please see Johnson Controls Product Security Advisory JCI-PSA-2021-24 v1
Mitigation: For more detailed mitigation instructions, please see Johnson Controls Product Security Advisory JCI
For more detailed mitigation instructions, please see Johnson Controls Product Security Advisory JCI-PSA-2022-01 v1
Mitigation: Available patches that resolve the vulnerabilities are listed below: Software Downloads: Experion U
Available patches that resolve the vulnerabilities are listed below: Software Downloads: Experion Update Patch R400.6, Experion Update Patch R410.6, Experion Update Patch R430.2
Mitigation: Please contact your Honeywell technical support for registration and installation instructions for t
Please contact your Honeywell technical support for registration and installation instructions for these patches at : (https://www.honeywellprocess.com/en-US/support/pages/request-support.aspx)
Mitigation: (https://www.honeywellprocess.com/en-US/contact-us/pages/default.aspx)
(https://www.honeywellprocess.com/en-US/contact-us/pages/default.aspx)
Mitigation: Honeywell currently supports EKPS Versions R400.6, R410.6, and 430.2. Honeywell strongly encourages
Honeywell currently supports EKPS Versions R400.6, R410.6, and 430.2. Honeywell strongly encourages and recommends all customers running unsupported versions of EKPS prior to R400 to upgrade to a supported version.
Patch: For instructions on this process: Go to the Honeywell Website and sign in. Select “Support” at the t
For instructions on this process: Go to the Honeywell Website and sign in. Select “Support” at the top of the web page. Select “Product Documents & Downloads.” In the given search box, search for: “OneWireless R322.2” or, after logging in, select the hyperlink: “OneWireless R322.2.”
Patch: Honeywell recommends users upgrade OneWireless WDM to release R322.2. Download information includes
Honeywell recommends users upgrade OneWireless WDM to release R322.2. Download information includes the following: Product: OneWireless. Version: 322.2
Patch: The recommended network installation guidelines are available in the Honeywell guide, "Network-Plann
The recommended network installation guidelines are available in the Honeywell guide, "Network-Planning-and-Installation-Guide-OWDOC-X253-en-322." For access, users should visit the Honeywell Website and sign in, select “Support” at the top of the web page, then select “Product Documents & Downloads.” In the given search box, search for: “Network-Planning-and-Installation-Guide-OWDOC-X253-en-322” or, after logging in, select the hyperlink: Network-Planning-and-Installation-Guide-OWDOC-X253-en-322.
Patch: Honeywell advises users to ensure OneWireless security best practices are followed on the network to
Honeywell advises users to ensure OneWireless security best practices are followed on the network to which the OneWireless WDM is attached to ensure access is limited to authorized users only. Users should ensure the backup files are maintained in a network location or physical drive with access limited to authorized users only and should not share them.
Mitigation: R501.6, R511.5 and R520 releases have an update to incorporate the secure lock functionality. Secure
R501.6, R511.5 and R520 releases have an update to incorporate the secure lock functionality. Secure lock restricts all firmware downloads to process controllers while the lock is invoked.
Patch: Experion LX R520.1 incorporates secure boot functionality and signed firmware images.
Experion LX R520.1 incorporates secure boot functionality and signed firmware images.
Mitigation: For more information and support, users should contact Honeywell support.
For more information and support, users should contact Honeywell support.
Mitigation: Additional Precautions: Do not use a Station node to connect to the Internet for the purposes of
Additional Precautions: Do not use a Station node to connect to the Internet for the purposes of Web browsing. If a Station node is connected to the Internet, do not use Station or Internet Explorer to browse the Internet, or limit this usage only to trusted Web sites.
Mitigation: Honeywell Environmental Combustion and Control (ECC) SymmetrE customers or their contractors should
Honeywell Environmental Combustion and Control (ECC) SymmetrE customers or their contractors should use the URL below to obtain HMIWeb Browser update. Users should install this update on the SymmetrE server and workstation clients following the Software Release Bulletin instructions. The update can be found here: (https://extranet.honeywell.com/ecc/TheBuildingsForum) under the XL5000—SymmetrE section. Access to this Web site requires registration.
Mitigation: Honeywell Process Solutions (HPS) and Honeywell Building Solutions (HBS) have released fixes for thi
Honeywell Process Solutions (HPS) and Honeywell Building Solutions (HBS) have released fixes for this vulnerability. HPS customers should download the security notification that describes the vulnerability and provides a link to the fixes at: (www.honeywellprocess.com) Select Support, then select Latest Notifications or use this link (https://www.honeywellprocess.com/en-US/support/pages/all-notifications.aspx). Open document SN 2012 03 09 01A Security Vulnerability in HMIWeb Browser. No login is required to view the document. However, login is required to download software using links in Honeywell’s SN document. HBS customers should contact their local account manager to arrange for updates to be applied by HBS service technicians.
Mitigation: Linux: (https://www.centraline.com/index.php?id=847&route=article/index&directory_id=140&direct_link
Linux: (https://www.centraline.com/index.php?id=847&route=article/index&directory_id=140&direct_link=1)
Mitigation: CARE: (https://www.centraline.com/index.php?id=847&route=article/index&directory_id=138&direct_link=
CARE: (https://www.centraline.com/index.php?id=847&route=article/index&directory_id=138&direct_link=1)
Mitigation: The update for this vulnerability is Excel Web Linux version 2.04.01 (March, 2014) or later plus the
The update for this vulnerability is Excel Web Linux version 2.04.01 (March, 2014) or later plus the programming tool CARE version 10.02 (March 2014) or later
Mitigation: In the Centraline partner channel, Excel Web controllers also have been sold under the brand name “F
In the Centraline partner channel, Excel Web controllers also have been sold under the brand name “FALCON”
Mitigation: Customers are encouraged to contact their local Honeywell HBS branch to have their sites updated to
Customers are encouraged to contact their local Honeywell HBS branch to have their sites updated to the latest version
Mitigation: Centraline partners can directly access (http://www.centraline.com) and get these versions
Centraline partners can directly access (http://www.centraline.com) and get these versions
Patch: Update to V8.18.27 or later version
Update to V8.18.27 or later version
Patch: Update to V7.23.37 or later version
Update to V7.23.37 or later version
Patch: Update to V9.24.0 or later version
Update to V9.24.0 or later version
Patch: Update to V10.3.1 or later version
Update to V10.3.1 or later version
Mitigation: Honeywell has released a new version of the Network.dll, which mitigates the identified buffer overf
Honeywell has released a new version of the Network.dll, which mitigates the identified buffer overflow vulnerability. The new version of the Network.dll has been made available in the following Uniformance PHD versions: R310.1.1.2, R320.1.0.2, and R321.1.1.
Mitigation: For more information about this vulnerability and how to apply the patches, please see Honeywell’s S
For more information about this vulnerability and how to apply the patches, please see Honeywell’s Security Notification SN 2016-01-27 under the support tab at the following web page: (https://www.honeywellprocess.com)
Mitigation: Follow a least privilege approach and restrict system access to authorized personnel.
Follow a least privilege approach and restrict system access to authorized personnel.
Mitigation: Apply defense-in-depth strategies.
Apply defense-in-depth strategies.
Mitigation: Log and monitor network traffic for suspicious activity.
Log and monitor network traffic for suspicious activity.
Mitigation: Ensure adequate security controls are in place between OT and IT network segments.
Ensure adequate security controls are in place between OT and IT network segments.
Mitigation: Apply product updates as available.
Apply product updates as available.
Mitigation: Disable unnecessary accounts and services.
Disable unnecessary accounts and services.
Mitigation: Follow guidance in the product security manual to ensure isolation of network segments upon which au
Follow guidance in the product security manual to ensure isolation of network segments upon which automation controllers reside.
Mitigation: Honeywell recommends users update VMS 560 Build 595 T2-Patch for affected VMS systems, and NVR 5.6 B
Honeywell recommends users update VMS 560 Build 595 T2-Patch for affected VMS systems, and NVR 5.6 Build 595 T2-Patch for affected NVR systems. The updates can be found at the Honeywell's MyWebTech site via a user account. Additionally, Honeywell recommends that users:
Mitigation: Update software patch as recommended in Honeywell security notification (SN 2019-10-25 01).
Update software patch as recommended in Honeywell security notification (SN 2019-10-25 01).
Mitigation: As a best practice, Honeywell recommends users isolate their systems from the Internet or create add
As a best practice, Honeywell recommends users isolate their systems from the Internet or create additional layers of defense by placing the affected hardware behind a firewall or into a DMZ; and if remote connections to the network are required, consider using a VPN or other means to ensure secure remote connections into the network where the device is located.
Mitigation: Update MAXPRO VMS and NVR to latest R560 and 5.6 before applying this patch.
Update MAXPRO VMS and NVR to latest R560 and 5.6 before applying this patch.
Mitigation: For more information, see Carrier's security bulletin for LenelS2.
For more information, see Carrier's security bulletin for LenelS2.
Patch: These vulnerabilities have been mitigated in NetBox release 5.6.2. It is strongly recommended that u
These vulnerabilities have been mitigated in NetBox release 5.6.2. It is strongly recommended that users upgrade to NetBox release 5.6.2 by contacting their authorized installer.Users should follow recommended deployment guidelines found in the NetBox hardening guide found in the NetBox built-in help menu.
Mitigation: Honeywell has fixed the reported issue; users are advised to upgrade to version 151.2 or later.
Honeywell has fixed the reported issue; users are advised to upgrade to version 151.2 or later.
Mitigation: Honeywell EBI, SymmetrE, and CPO-M users can find more information in Honeywell’s Bulletin CSA-2013-
Honeywell EBI, SymmetrE, and CPO-M users can find more information in Honeywell’s Bulletin CSA-2013-0131-01 or Product Bulletin 581 on the EBI support website.Honeywell Enterprise Buildings Integrator, (https://buildingsolutions.honeywell.com/Cultures/en-US/ServicesSolutions/BuildingManagementSystems/EnterpriseBuildingsIntegrator/), (login required)
Mitigation: Honeywell has requested that Microsoft issue a kill bit for the HscRemoteDeploy.dll in a future mont
Honeywell has requested that Microsoft issue a kill bit for the HscRemoteDeploy.dll in a future monthly Microsoft Windows security update. This will also automatically disable the DLL on any affected system that is using the Windows Update feature in the listed Honeywell products.
Mitigation: Honeywell has created a Station Security Update package that disables the DLL. It should be run on t
Honeywell has created a Station Security Update package that disables the DLL. It should be run on the EBI servers, all Station client PCs, and any PCs that have used the HMIWeb Browser client. Honeywell recommends asset owners contact their local HBS service representative as this update should only be performed by a qualified, trained resource.
Mitigation: Honeywell recommends disabling HscRemoteDeploy.dll from any client or server computers on affected s
Honeywell recommends disabling HscRemoteDeploy.dll from any client or server computers on affected systems. This DLL is not used for any runtime functions and is only required to simplify the installation or upgrade of the HMIWeb Browser client.
Mitigation: Additional information can be found in Honeywell Support document SN2021-02-22-01.
Additional information can be found in Honeywell Support document SN2021-02-22-01.
Mitigation: Honeywell recommends users follow all guidance in the Experion Network and Security Planning Guide t
Honeywell recommends users follow all guidance in the Experion Network and Security Planning Guide to prevent attacks by malicious actors.
Patch: Honeywell recommends upgrading Matrikon OPC UA Tunneller to Version 6.3.0.8233
Honeywell recommends upgrading Matrikon OPC UA Tunneller to Version 6.3.0.8233
Patch: Install patch scripts to safely remove the software causing the vulnerability. In addition, general
Install patch scripts to safely remove the software causing the vulnerability. In addition, general mitigation factors are recommended. (Due to complexity of individual implementation of project, contact local account team for further information on possible remediation and mitigation strategies.)
Mitigation: iCLASS SE Readers
iCLASS SE Readers
Mitigation: HID OMNIKEY Readers, OMNIKEY Secure Elements, iCLASS SE Reader Modules, iCLASS SE Processors
HID OMNIKEY Readers, OMNIKEY Secure Elements, iCLASS SE Reader Modules, iCLASS SE Processors
Mitigation: Customers using the HID standard key, and other customers who are concerned their keys may be compro
Customers using the HID standard key, and other customers who are concerned their keys may be compromised should consider steps to update the readers and credentials with new keys. To assist in this effort, HID will be introducing a free upgrade to the Elite Key program. Contact your HID representative for more information. https://www.hidglobal.com/support
Mitigation: HID Global recommends the following mitigations to reduce the risk:
HID Global recommends the following mitigations to reduce the risk:
Mitigation: Administrators should plan to securely destroy unneeded configuration cards.
Administrators should plan to securely destroy unneeded configuration cards.
Mitigation: Contact HID to receive a "Shield Card" that will prevent further configuration changes using reader
Contact HID to receive a "Shield Card" that will prevent further configuration changes using reader configuration cards.
Mitigation: HID has also provided additional steps users can take steps to harden their readers to prevent malic
HID has also provided additional steps users can take steps to harden their readers to prevent malicious configuration changes.
Mitigation: iCLASS SE Readers using firmware version 8.6.0.4 or higher can use the HID Reader Manager applicatio
iCLASS SE Readers using firmware version 8.6.0.4 or higher can use the HID Reader Manager application to prevent the readers from accepting configuration changes from Configuration Cards.If you need assistance, or if the reader firmware has not been updated to 8.6.0.4 or higher, contact HID Technical Support.
Mitigation: Elite Key and Custom Key customers that have kept their configuration cards secure should continue t
Elite Key and Custom Key customers that have kept their configuration cards secure should continue to be vigilant and restrict access to those cards. To exploit this vulnerability, a reader must be physically close to or in possession of the configuration cards to communicate with the card and extract information
Mitigation: Updating to the latest version
Updating to the latest version
Mitigation: Allow only trained and trusted persons to have physical access to the system, including devices with
Allow only trained and trusted persons to have physical access to the system, including devices with connection to the system though the Ethernet port.
Mitigation: Niagara 4.9.0.198
Niagara 4.9.0.198
Mitigation: Updates are available by contacting the sales support channel or by contacting the Tridium support t
Updates are available by contacting the sales support channel or by contacting the Tridium support team at [email protected]
Mitigation: Tridium has released updates that mitigate this vulnerability and recommends users update to the ver
Tridium has released updates that mitigate this vulnerability and recommends users update to the versions
Patch: Niagara Enterprise Security 4.9.0.60
Niagara Enterprise Security 4.9.0.60
Mitigation: For more information please refer to Security Bulletin SB 2020-Tridium-2.
For more information please refer to Security Bulletin SB 2020-Tridium-2.
Mitigation: All Tridium Niagara users for all supported platforms are encouraged to update their systems with th
All Tridium Niagara users for all supported platforms are encouraged to update their systems with these releases to mitigate risk. For further guidance, please contact a Tridium account manager or Customer Support.
Mitigation: If remote connections to the network are required, consider using a VPN or other means to ensure sec
If remote connections to the network are required, consider using a VPN or other means to ensure secure remote connections into the network.
Mitigation: Review and validate the list of authorized users who can authenticate to Niagara.
Review and validate the list of authorized users who can authenticate to Niagara.
Mitigation: Users can contact Honeywell technical support for registration and installation instructions for the
Users can contact Honeywell technical support for registration and installation instructions for these patches at the following URLs: (https://www.honeywellprocess.com/en-US/support/pages/request-support.aspx)
Mitigation: Honeywell recommends that Experion users download and apply the appropriate patch to protect themsel
Honeywell recommends that Experion users download and apply the appropriate patch to protect themselves from this vulnerability.
Mitigation: Honeywell’s software downloads to resolve the vulnerabilities include the following: R400.8 HOTFIX1,
Honeywell’s software downloads to resolve the vulnerabilities include the following: R400.8 HOTFIX1, R410.8 HOTFIX6, R430.5 HOTFIX1, and R431.2 HOTFIX2
Mitigation: Users can contact Honeywell technical support for registration and installation instructions for the
Users can contact Honeywell technical support for registration and installation instructions for these patches at the following URLs: (https://www.honeywellprocess.com/en-US/contact-us/pages/default.aspx)
Mitigation: In the event that a patch is not yet available for a current Experion release, Honeywell recommends
In the event that a patch is not yet available for a current Experion release, Honeywell recommends users either isolate the network traffic when using the client tools (eNAP Server service) or turn the eNAP Server service off when not uploading new firmware until a patch is available.
Mitigation: Update NWS-3 firmware per the security notification.
Update NWS-3 firmware per the security notification.
Mitigation: Honeywell has released a firmware update package (login required) for all affected products listed a
Honeywell has released a firmware update package (login required) for all affected products listed above.
Mitigation: Isolate system from the Internet or create additional layers of defense by placing the affected hard
Isolate system from the Internet or create additional layers of defense by placing the affected hardware behind a firewall or into a DMZ.
Mitigation: For additional details please see Honeywell Security Notification SN 2020-02-04 01
For additional details please see Honeywell Security Notification SN 2020-02-04 01
Mitigation: If remote connections to the network are required, consider using a VPN or other means to ensure sec
If remote connections to the network are required, consider using a VPN or other means to ensure secure remote connections into the network where the device is located.
Mitigation: Always use strong passwords on installations to prevent unauthorized access
Always use strong passwords on installations to prevent unauthorized access
Mitigation: Update to currently supported versions of Experion software.
Update to currently supported versions of Experion software.
Mitigation: Since the vulnerable service remains installed, attention should be paid to ensuring that the Window
Since the vulnerable service remains installed, attention should be paid to ensuring that the Windows firewall remain enabled at all times.
Mitigation: For existing customers more information can be found on the Honeywell Process Solutions website (log
For existing customers more information can be found on the Honeywell Process Solutions website (login required).
Mitigation: Enabling the Windows-based firewall and maintaining other safeguards can mitigate the risk.
Enabling the Windows-based firewall and maintaining other safeguards can mitigate the risk.
Mitigation: Honeywell posted a Security Bulletin on Centraline PartnerwebCentraline by Honeywell login page: (ht
Honeywell posted a Security Bulletin on Centraline PartnerwebCentraline by Honeywell login page: (https://www.centraline.com/index.php?id=1)
Patch: Update to V0.4.0.22
Update to V0.4.0.22
Mitigation: SIMATIC RF350M and RF650M: Disable Wi-Fi if possible
SIMATIC RF350M and RF650M: Disable Wi-Fi if possible
Mitigation: SIMOTICS CONNECT 400: No specific countermeasures needed as the data is protected via TLS on applica
SIMOTICS CONNECT 400: No specific countermeasures needed as the data is protected via TLS on application layer
Mitigation: An attacker would require physical access to the HART loop in order to execute this attack. The vuln
An attacker would require physical access to the HART loop in order to execute this attack. The vulnerability is exploited by connecting a rogue device to the HART loop and sending malformed data to the frame. If the end user has adequate physical protection of the HART loop in place, exploitation is not possible. Field devices and WirelessHART installations are unaffected. Emerson recommends having physical protection of the end users’ entire infrastructure.
Mitigation: Emerson updated the HART DTM for the Rosemount 644 Temperature Transmitter Rev. 8, DTM Version 1.4.1
Emerson updated the HART DTM for the Rosemount 644 Temperature Transmitter Rev. 8, DTM Version 1.4.181 on November 17, 2014. Installing this DTM will resolve the vulnerability for all the impacted Emerson products listed above. Emerson recommends downloading the updated DTM from its web site: (http://www2.emersonprocess.com/en-US/documentation/deviceinstallkits/Pages/deviceinstallkitsearch.aspx)
Mitigation: More details can be found at Emerson’s advisory located: (http://www2.emersonprocess.com/siteadmince
More details can be found at Emerson’s advisory located: (http://www2.emersonprocess.com/siteadmincenter/PM Central Web Documents/EMR EPM14001-1.pdf)
Mitigation: Recommended security practices and firewall configurations can help protect a process control networ
Recommended security practices and firewall configurations can help protect a process control network from attacks that originate from outside the network. Process control systems (including the 4-20 mA current loop for connecting field devices) should be physically protected from direct access by unauthorized personnel, have no direct connections to the Internet, and separated from other networks by means of a firewall system that has a minimal number of ports exposed. Process control systems should not be used for Internet surfing, instant messaging, or receiving emails. Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.
Mitigation: ABB provides Alerts and Notifications of their products on their web site at: http://www.abb.com/caw
ABB provides Alerts and Notifications of their products on their web site at: http://www.abb.com/cawp/abbzh254/2c9d1261d9fa1dcfc1257950002e4fbf.aspx
Mitigation: ABB’s security bulletin titled SECURITY BULLETIN - HART Vulnerability in ABB Third Party Device Type
ABB’s security bulletin titled SECURITY BULLETIN - HART Vulnerability in ABB Third Party Device Type Library, includes patch information regarding this vulnerability. This security bulletin is available at:http://www05.abb.com/global/scot/scot400.nsf/veritydisplay/8b6117ce372491c0c1257dea004c6536/$file/2PAA114210_-_en_SECURITY_BULLETIN_-_HART_Vulnerability_in_ABB_Third_Party_Device_Type_Library.pdf
Mitigation: Using a virus scanner on all Windows-based system nodes, with the latest updates and with on‑access
Using a virus scanner on all Windows-based system nodes, with the latest updates and with on‑access scanning enabled, can help prevent infection by malicious or unwanted software.
Mitigation: Please contact your local Yokogawa office to obtain the latest version to mitigate this vulnerabilit
Please contact your local Yokogawa office to obtain the latest version to mitigate this vulnerability. There are offices worldwide
Mitigation: JPCERT has also released an advisory (JVNVU # 96347573) to disclose this information. It can be foun
JPCERT has also released an advisory (JVNVU # 96347573) to disclose this information. It can be found in the following location: http://jvn.jp/vu/JVNVU96347573/index.html (Japanese)
Mitigation: Yokogawa has released an advisory (YSAR-15-0001) to address this issue. It can be found at the follo
Yokogawa has released an advisory (YSAR-15-0001) to address this issue. It can be found at the following location: http://www.yokogawa.com/dcs/security/ysar/YSAR-15-0001E.pdf
Mitigation: North American office contact information is listed on the following web site: http://www.yokogawa.c
North American office contact information is listed on the following web site: http://www.yokogawa.com/us/contact/index.htm#find-a-yokogawa-office
Mitigation: The DTM Collection CorrTran DTM does not have a software update at this time. PEPPERL+FUCHS recommen
The DTM Collection CorrTran DTM does not have a software update at this time. PEPPERL+FUCHS recommends to physically protect CorrTran MV and CorrTran AQUA installations to prevent any malicious connection to the HART loop.
Mitigation: PEPPERL+FUCHS has updated the software library for the DTM Collection Level Control DTM impacted. Th
PEPPERL+FUCHS has updated the software library for the DTM Collection Level Control DTM impacted. The updated software Version 1.0.29 is available at: http://www.pepperl-fuchs.com
Mitigation: Honeywell has validated and released an update of the DTM software to mitigate this vulnerability. C
Honeywell has validated and released an update of the DTM software to mitigate this vulnerability. Customers should upgrade their systems using the applicable patch below as soon as possible to minimize the risk of exploitation of this vulnerability. The patch can be downloaded using the following link: https://www.honeywellprocess.com/library/support/Public/Downloads/Honeywell-Enhanced-DTM-Library-HART-V2.4.18.180.zip
Mitigation: Magnetrol has updated the software library impacted. The update can be downloaded here: http://us.ma
Magnetrol has updated the software library impacted. The update can be downloaded here: http://us.magnetrol.com/Product_Catalog.aspx?Id=5
Mitigation: CodeWrights GmbH has developed an updated library to address this vulnerability. These libraries are
CodeWrights GmbH has developed an updated library to address this vulnerability. These libraries are being provided to its customers (vendors) with current support agreements.
Mitigation: CodeWrights GmbH has developed an updated library to address this vulnerability. These libraries are
CodeWrights GmbH has developed an updated library to address this vulnerability. These libraries are being provided to its customers (vendors) with current support agreements.
Mitigation: CodeWrights GmbH has developed an updated library to address this vulnerability. These libraries are
CodeWrights GmbH has developed an updated library to address this vulnerability. These libraries are being provided to its customers (vendors) with current support agreements.
Mitigation: CodeWrights GmbH has developed an updated library to address this vulnerability. These libraries are
CodeWrights GmbH has developed an updated library to address this vulnerability. These libraries are being provided to its customers (vendors) with current support agreements.
Mitigation: Endress+Hauser has released a security update addressing the HART Device DTMs. The update can be dow
Endress+Hauser has released a security update addressing the HART Device DTMs. The update can be downloaded here: (https://portal.endress.com/webdownload/FieldCareDownloadGui/)
Mitigation: (http://www.us.endress.com/en/online-tools-assist-around-the-clock/process-instrument-support)
(http://www.us.endress.com/en/online-tools-assist-around-the-clock/process-instrument-support)
Mitigation: Endress+Hauser Inc. - Technical support Tel.: 888-ENDRESS (mailto:[email protected]) (htt
Endress+Hauser Inc. - Technical support Tel.: 888-ENDRESS (mailto:[email protected]) (https://www.us.endress.com/support-options)
Mitigation: Endress+Hauser Inc. - Technical support Tel.: 888-ENDRESS (mailto:[email protected]) (htt
Endress+Hauser Inc. - Technical support Tel.: 888-ENDRESS (mailto:[email protected]) (https://www.us.endress.com/support-options)
Mitigation: Endress+Hauser has recommended owners/operators to update HART DTM library 2.41 and FDT tool FieldCa
Endress+Hauser has recommended owners/operators to update HART DTM library 2.41 and FDT tool FieldCare to Version 2.10. For further information please consult the Release Notes and the Technical Information.
Patch: Vulnerabilities fixed on central cloud service starting 2021-12-13; no user actions necessary
Vulnerabilities fixed on central cloud service starting 2021-12-13; no user actions necessary
Mitigation: Users who have difficulty accessing the document can contact Honeywell support.
Users who have difficulty accessing the document can contact Honeywell support.
Mitigation: Honeywell provided detailed information for mitigation on the insecure communication in Control Edge
Honeywell provided detailed information for mitigation on the insecure communication in Control Edge PLC\RTU. Please access the support document SN2020-04-17-01-ConotrolEdge-PLC-and- and-RTU-Secure-Communication (login required). Download this document and follow the step by step instructions. The user must be logged in to access the security notification.
Patch: The table will be updated in case vulnerable products become known.
The table will be updated in case vulnerable products become known.
Patch: Update to V1.0.3 or later version
Update to V1.0.3 or later version
Mitigation: Restrict access to the affected systems, especially to port 443/tcp, to trusted IP addresses only
Restrict access to the affected systems, especially to port 443/tcp, to trusted IP addresses only
Mitigation: Restrict access to the affected systems, especially to port 443/tcp, to trusted IP addresses only
Restrict access to the affected systems, especially to port 443/tcp, to trusted IP addresses only
Patch: Update to V1.0.3 or later version
Update to V1.0.3 or later version
Patch: Update BIOS to V1.0.212N or later version
Update BIOS to V1.0.212N or later version
Mitigation: Restrict system access to authorized personnel only and follow a least privilege approach.
Restrict system access to authorized personnel only and follow a least privilege approach.
Mitigation: Apply defense-in-depth strategies.
Apply defense-in-depth strategies.
Mitigation: Ensure adequate security controls are in place between OT and IT network segments.
Ensure adequate security controls are in place between OT and IT network segments.
Mitigation: Disable unnecessary accounts and services.
Disable unnecessary accounts and services.
Mitigation: Follow guidance in the product security manual to ensure isolation of network segments upon which bu
Follow guidance in the product security manual to ensure isolation of network segments upon which building automation controllers reside.
Mitigation: Procure and utilize currently supported hardware through reputable supply channels.
Procure and utilize currently supported hardware through reputable supply channels.
Mitigation: For IQ4 Series controllers, ensure the latest available firmware version is utilized. The latest fir
For IQ4 Series controllers, ensure the latest available firmware version is utilized. The latest firmware may be obtained from a dealer or the Trend Partner Network (login required).
Mitigation: Apply product updates as available.
Apply product updates as available.
Mitigation: Follow the Security Best Practice for Trend Products included with product documentation. Additional
Follow the Security Best Practice for Trend Products included with product documentation. Additional copies may be obtained from a dealer or the Trend Partner Network (login required).
Mitigation: Log and monitor network traffic for suspicious activity.
Log and monitor network traffic for suspicious activity.

// References