Vulnerabilities > Honeywell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-02 | CVE-2025-2605 | OS Command Injection vulnerability in Honeywell Mb-Secure Firmware and Mb-Secure PRO Firmware Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Honeywell MB-Secure allows Privilege Abuse. | 8.8 |
| 2024-09-27 | CVE-2024-46453 | Cross-site Scripting vulnerability in Honeywell Iq3Xcite Firmware 2.31 A cross-site scripting (XSS) vulnerability in the component /test/ of iq3xcite v2.31 to v3.05 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. | 6.1 |
| 2024-05-03 | CVE-2023-51599 | Unspecified vulnerability in Honeywell Saia PG5 Controls Suite 2.3.193 Honeywell Saia PG5 Controls Suite Directory Traversal Remote Code Execution Vulnerability. | 8.8 |
| 2024-05-03 | CVE-2023-51600 | Unspecified vulnerability in Honeywell Saia PG5 Controls Suite 2.3.193 Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability. | 6.5 |
| 2024-05-03 | CVE-2023-51601 | Unspecified vulnerability in Honeywell Saia PG5 Controls Suite 2.3.193 Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability. | 6.5 |
| 2024-05-03 | CVE-2023-51602 | Unspecified vulnerability in Honeywell Saia PG5 Controls Suite 2.3.193 Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability. | 6.5 |
| 2024-05-03 | CVE-2023-51603 | Unspecified vulnerability in Honeywell Saia PG5 Controls Suite 2.3.193 Honeywell Saia PG5 Controls Suite CAB File Parsing Directory Traversal Remote Code Execution Vulnerability. | 8.8 |
| 2024-05-03 | CVE-2023-51604 | Unspecified vulnerability in Honeywell Saia PG5 Controls Suite 2.3.193 Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability. | 6.5 |
| 2024-05-03 | CVE-2023-51605 | Unspecified vulnerability in Honeywell Saia PG5 Controls Suite 2.3.193 Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability. | 6.5 |
| 2024-02-13 | CVE-2024-1309 | Unspecified vulnerability in Honeywell Niagara Framework Uncontrolled Resource Consumption vulnerability in Honeywell Niagara Framework on Windows, Linux, QNX allows Content Spoofing.This issue affects Niagara Framework: before Niagara AX 3.8.1, before Niagara 4.1. | 7.5 |