Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2014-9187

Опубликовано: 25 мар. 2019
Источник: nvd
CVSS3: 9.8
CVSS2: 7.5
EPSS Низкий

Описание

Multiple heap-based buffer overflow vulnerabilities exist in Honeywell Experion PKS all versions prior to R400.6, all versions prior to R410.6, and all versions prior to R430.2 modules, which could lead to possible remote code execution or denial of service. Honeywell strongly encourages and recommends all customers running unsupported versions of EKPS prior to R400 to upgrade to a supported version.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:honeywell:experion_process_knowledge_system:*:*:*:*:*:*:*:*
Версия от r400 (включая) до r400.6 (исключая)
cpe:2.3:a:honeywell:experion_process_knowledge_system:*:*:*:*:*:*:*:*
Версия от r410 (включая) до r410.6 (исключая)
cpe:2.3:a:honeywell:experion_process_knowledge_system:*:*:*:*:*:*:*:*
Версия от r430 (включая) до r430.2 (исключая)

EPSS

Процентиль: 84%
0.0223
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-122
CWE-119

Связанные уязвимости

github логотип

GHSA-m8p6-m7c7-56jf

CVSS3: 9.8
github
больше 3 лет назад

Multiple heap-based buffer overflow vulnerabilities exist in Honeywell Experion PKS all versions prior to R400.6, all versions prior to R410.6, and all versions prior to R430.2 modules, which could lead to possible remote code execution or denial of service. Honeywell strongly encourages and recommends all customers running unsupported versions of EKPS prior to R400 to upgrade to a supported version.

EPSS

Процентиль: 84%
0.0223
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-122
CWE-119