CVE-2023-3711

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 12, 2023

Updated: Sep 19, 2023

CWE ID 416

Summary

CVE-2023-3711 is a session fixation vulnerability impacting Honeywell PM43 printers on 32-bit ARM systems, specifically the printer web page modules. Hackers can exploit this weakness to falsify session credentials by predicting the next session ID. Affected versions include those prior to P10.19.050004. To mitigate this risk, users should update their printers to the latest available firmware version, such as MR19.5 (e.g., P10.19.050006).

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rz8Y_8
https://www.cve.org/CVERecord?id=CVE-2023-3711
https://nvd.nist.gov/vuln/detail/CVE-2023-3711

Back to Vulnerability Database

CVE-2023-3711

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations