What is CVE-2023-5392?

CVE-2023-5392 is a high-severity vulnerability in Honeywell C300, classified under CWE-1295. CVSS score: 7.5/10. Published 2024-04-11.

How severe is CVE-2023-5392?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Honeywell C300

CVE-2023-5392

C300 information leak due to an analysis feature which allows extracting more memory over the network than required by the function. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notificati…

EPSS: 0.001 (24.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Honeywell C300 — versions 520.2, 510.1, 520.1

Weakness classification (CWE)

CWE-1295

References

process.honeywell.com

Frequently asked questions

What is CVE-2023-5392?: CVE-2023-5392 is a high-severity vulnerability in Honeywell C300, classified under CWE-1295. CVSS score: 7.5/10. Published 2024-04-11.
How severe is CVE-2023-5392?: High severity. CVSS v3 base score is 7.5 out of 10.