CVE-2023-6179

Summary

Honeywell ProWatch, 4.5, including all Service Pack versions, contain a Vulnerability in Application Server's executable folder(s). A(n) attacker could potentially exploit this vulnerability, leading to a standard user to have arbitrary system code execution. Honeywell recommends updating to the most recent version of this product, service or offering (Pro-watch 6.0.2, 6.0, 5.5.2,5.0.5).

Affected Software

VendorProductVersion RangeStatus
HoneywellProWatch4.5affected
HoneywellProWatch6.0.2unaffected
HoneywellProWatch6.0unaffected
HoneywellProWatch5.5.2unaffected
HoneywellProWatch5.0.5unaffected

Weaknesses

  • CWE-732: CWE-732 Incorrect Permission Assignment for Critical Resource

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References