Remote Code Execution Vulnerability in Controller Firmware

CVE-2023-25178 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Controller may be loaded with malicious firmware which could enable remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning.

Learn more about our Web Application Penetration Testing UK.