Honeywell Pm23 43 vulnerabilities
3 known vulnerabilities affecting honeywell/pm23_43.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH2
Vulnerabilities
Page 1 of 1
CVE-2023-3710P1CRITICALCVSS 9.8ExploitedPoCfixed in P10.19.0500042023-09-12
CVE-2023-3710 [CRITICAL] CWE-20 CVE-2023-3710: Improper Input Validation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules)
Improper Input Validation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Command Injection.This issue affects PM43 versions prior to P10.19.050004. Update to the latest available firmware version of the respective printers to version MR19.5 (e.g. P10.19.050006).
nvd
CVE-2023-3711P3HIGHCVSS 8.8fixed in P10.19.0500042023-09-12
CVE-2023-3711 [HIGH] CWE-384 CVE-2023-3711: Session Fixation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Se
Session Fixation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Session Credential Falsification through Prediction.This issue affects PM43 versions prior to P10.19.050004. Update to the latest available firmware version of the respective printers to version MR19.5 (e.g. P10.19.050006).
nvd
CVE-2023-3712P3HIGHCVSS 7.8fixed in P10.19.0500042023-09-12
CVE-2023-3712 [HIGH] CWE-552 CVE-2023-3712: Files or Directories Accessible to External Parties vulnerability in Honeywell PM43 on 32 bit, ARM (
Files or Directories Accessible to External Parties vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Privilege Escalation.This issue affects PM43 versions prior to P10.19.050004.
Update to the latest available firmware version of the respective printers to version MR19.5 (e.g. P10.19.050006).
nvd