CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Honeywell: >> Onewireless Network Wireless Device Manager Security Vulnerabilities

CVE-2022-43485

Use of Insufficiently Random Values in Honeywell OneWireless. This vulnerability may allow attacker to manipulate claims in client's JWT token. This issue affects OneWireless version 322.1

CVSS Score

6.2

EPSS Score

0.0

Published

2023-05-30

CVE-2022-46361

An attacker having physical access to WDM can plug USB device to gain access and execute unwanted commands. A malicious user could enter a system command along with a backup configuration, which could result in the execution of unwanted commands. This issue affects OneWireless all versions up to 322.1 and fixed in version 322.2.

CVSS Score

6.9

EPSS Score

0.0

Published

2023-05-30

CVE-2022-4240

Missing Authentication for Critical Function vulnerability in Honeywell OneWireless allows Authentication Bypass. This issue affects OneWireless version 322.1

CVSS Score

6.5

EPSS Score

0.0

Published

2023-05-30

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved