N/A

Server receiving a malformed message based on a using the specified key values can cause a heap overflow vulnerability which could lead to an attacker performing remote code execution or causing a failure.  See Honeywell Security Notification for recommendations on upgrading and versioning.

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

堆缓冲区溢出

Honeywell Experion Server 安全漏洞

Honeywell Experion Server是美国霍尼韦尔（Honeywell）公司的一款高性能工业控制系统服务器，主要用于 Experion Process Knowledge System（PKS）平台。 Honeywell Experion Server 存在安全漏洞，该漏洞源于服务器接收基于使用指定键值的格式错误的消息可能会导致堆溢出，导致攻击者执行远程代码。

N/A

N/A