VYPR

Iq4e Firmware

by Honeywell

CVEs (1)

  • CVE-2026-3611CriMar 12, 2026
    risk 0.65cvss 10.0epss 0.06

    The Honeywell IQ4x building management controller, exposes its full web-based HMI without authentication in its factory-default configuration. With no user module configured, security is disabled by design and the system operates under a System Guest (level 100) context,…