Heap Corruption Denial of Service Vulnerability Affects Honeywell Security Systems
CVE-2023-5398

5.9MEDIUM

Key Information:

Vendor

Honeywell

Vendor
CVE Published:
17 April 2024

What is CVE-2023-5398?

Server receiving a malformed message based on a list of IPs resulting in heap corruption causing a denial of service. See Honeywell Security Notification for recommendations on upgrading and versioning.

Affected Version(s)

Experion Server Experion LX 520.2

Experion Server Experion LX 511.1

Experion Server Experion LX 520.1

References

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-5398 : Heap Corruption Denial of Service Vulnerability Affects Honeywell Security Systems