CVE-2023-5878

Published: Feb 6, 2025

Modified: Feb 18, 2025

PUBLISHED

Description

Honeywell OneWireless Wireless Device Manager (WDM) for the following versions R310.x, R320.x, R321.x, R322.1, R322.2, R323.x, R330.1 contains a command injection vulnerability. An attacker who is authenticated could use the firmware update process to potentially exploit the vulnerability, leading to a command injection. Honeywell recommends updating to R322.3, R330.2 or the most recent version of this product2.

Vendor	Product	Versions
Honeywell	OneWireless Network Wireless Device Manager	affected `310.1 - <= 322.2` affected `323.1 - <= 330.1`

Weaknesses (CWE)

CWE-77

References

https://process.honeywell.com/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-5878

Description

Affected Products

Weaknesses (CWE)

References