Improper Digital Signature Verification in Honeywell IQ MultiAccess
CVE-2026-13742

5.9MEDIUM

Key Information:

Vendor: Honeywell Technologies
Status: Iq Multiaccess
Vendor: CVE Published:; 29 June 2026

🔔 Create Honeywell Technologies Vulnerability Alert

What is CVE-2026-13742?

Honeywell IQ MultiAccess, in all versions prior to and including version 28, has a vulnerability related to improper digital signature verification. This flaw allows an attacker to potentially substitute a legitimate file with a malicious one during the download process, posing a security risk to users. Honeywell advises users to update to the latest versions, specifically V27 SP1 and V28 SP1, to mitigate this risk.

Affected Version(s)

IQ MultiAccess Windows IQ.v27 <= 28

References

https://www.honeywell.com/us/en/product-security

CVSS V4

Score:

5.9

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2026
Vulnerability Reserved
Jun 29, 2026

CVE-2026-13742 Data

JSON