CVE-2023-5406

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Apr 17, 2024

Updated: Jul 9, 2024

CWE ID 787

Summary

CVE-2023-5406 is a serious vulnerability affecting server communication with controllers. A maliciously crafted message from the controller can lead to remote code execution, posing a significant risk to affected systems. Organizations using the affected software are urged to follow the recommendations outlined in the Honeywell Security Notification to upgrade and secure their systems against this vulnerability. This issue could enable an attacker to gain unauthorized access and control, potentially leading to widespread damage or data theft.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s5HAsS
https://www.cve.org/CVERecord?id=CVE-2023-5406
https://nvd.nist.gov/vuln/detail/CVE-2023-5406

Back to Vulnerability Database

CVE-2023-5406

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations