VYPR
Vendor

Honeywell

Products
81
CVEs
109
Across products
115
Status
Private

Products

81
View all 81 products →

Recent CVEs

109
View all 109 CVEs →
  • CVE-2026-3611CriMar 12, 2026
    risk 0.65cvss 10.0epss 0.06

    The Honeywell IQ4x building management controller, exposes its full web-based HMI without authentication in its factory-default configuration. With no user module configured, security is disabled by design and the system operates under a System Guest (level 100) context,…

  • CVE-2017-5140CriFeb 13, 2017
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior, and XLWeb 500 XLWebExe-1-02-08 and prior. Password is stored in clear text.

  • CVE-2017-5139CriFeb 13, 2017
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior, and XLWeb 500 XLWebExe-1-02-08 and prior. Any user is able to disclose a password by accessing a specific URL, because of Plaintext Storage of a Password.

  • CVE-2025-2523CriJul 10, 2025
    risk 0.61cvss 9.4epss 0.01

    The Honeywell Experion PKS and OneWireless WDM contains an Integer Underflow vulnerability in the component Control Data Access (CDA). An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result in a…

  • CVE-2023-5878CriFeb 6, 2025
    risk 0.61cvss epss 0.01

    Honeywell OneWireless Wireless Device Manager (WDM) for the following versions R310.x, R320.x, R321.x, R322.1, R322.2, R323.x, R330.1 contains a command injection vulnerability. An attacker who is authenticated could use the firmware update process to potentially exploit the…

  • CVE-2017-5671HigMar 29, 2017
    risk 0.60cvss 8.8epss 0.01

    Honeywell Intermec PM23, PM42, PM43, PC23, PC43, PD43, and PC42 industrial printers before 10.11.013310 and 10.12.x before 10.12.013309 have /usr/bin/lua installed setuid to the itadmin account, which allows local users to conduct a BusyBox jailbreak attack and obtain root…

  • CVE-2017-5142CriFeb 13, 2017
    risk 0.59cvss 9.1epss 0.01

    An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior, and XLWeb 500 XLWebExe-1-02-08 and prior. A user with low privileges is able to open and change the parameters by accessing a specific URL because of Improper Privilege Management.

  • CVE-2025-2521HigJul 10, 2025
    risk 0.56cvss 8.6epss 0.00

    The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data Access (CDA). An attacker could potentially exploit this vulnerability, leading to an Overread Buffers, which could result in improper index validation against…

  • CVE-2017-5143HigFeb 13, 2017
    risk 0.56cvss 8.6epss 0.02

    An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior, and XLWeb 500 XLWebExe-1-02-08 and prior. A user without authenticating can make a directory traversal attack by accessing a specific URL.

  • CVE-2015-7907HigDec 21, 2015
    risk 0.56cvss 8.6epss 0.04

    Directory traversal vulnerability in the web server on Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allows remote attackers to bypass authentication, and write to a configuration file or trigger a calibration or test, via unspecified…

  • CVE-2025-3947HigJul 10, 2025
    risk 0.53cvss 8.2epss 0.00

    The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access (CDA). An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in improper integer data value checking…

  • CVE-2025-3946HigJul 10, 2025
    risk 0.53cvss 8.2epss 0.00

    The Honeywell Experion PKS and OneWireless WDM contains a Deployment of Wrong Handler vulnerability in the component Control Data Access (CDA). An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in…

  • CVE-2017-14263HigSep 11, 2017
    risk 0.53cvss 8.1epss 0.04

    Honeywell NVR devices allow remote attackers to create a user account in the admin group by leveraging access to a guest account to obtain a session ID, and then sending that session ID in a userManager.addUser request to the /RPC2 URI. The attacker can login to the device with…

  • CVE-2025-2520HigJul 10, 2025
    risk 0.49cvss 7.5epss 0.00

    The Honeywell Experion PKS contains an Uninitialized Variable in the common Epic Platform Analyzer (EPA) communications. An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which results in a dereferencing of an…

  • CVE-2023-5392HigApr 11, 2024
    risk 0.49cvss 7.5epss 0.00

    C300 information leak due to an analysis feature which allows extracting more memory over the network than required by the function. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and…

  • CVE-2016-2280HigApr 21, 2016
    risk 0.49cvss 7.5epss 0.02

    Buffer overflow in RDISERVER in Honeywell Uniformance Process History Database (PHD) R310, R320, and R321 allows remote attackers to cause a denial of service (service outage) via unspecified vectors.

  • CVE-2025-12351MedOct 27, 2025
    risk 0.44cvss 6.8epss 0.00

    Honeywell S35 Series Cameras contains an authorization bypass Vulnerability through User controller key. An attacker could potentially exploit this vulnerability, leading to Privilege Escalation to admin privileged functionalities . Honeywell also recommends updating to the most…

  • CVE-2025-2522MedJul 10, 2025
    risk 0.42cvss 6.5epss 0.00

    The Honeywell Experion PKS and OneWireless WDM contains Sensitive Information in Resource vulnerability in the component Control Data Access (CDA). An attacker could potentially exploit this vulnerability, leading to a Communication Channel Manipulation, which could result…

  • CVE-2018-8714MedMay 17, 2018
    risk 0.40cvss 6.1epss 0.00

    Honeywell MatrikonOPC OPC Controller before 5.1.0.0 allows local users to transfer arbitrary files from a host computer and consequently obtain sensitive information via vectors related to MSXML libraries.

  • CVE-2017-5141MedFeb 13, 2017
    risk 0.39cvss 6.0epss 0.01

    An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior, and XLWeb 500 XLWebExe-1-02-08 and prior. An attacker can establish a new user session, without invalidating any existing session identifier, which gives the opportunity to steal…