Honeywell: >> Win-Pak Security Vulnerabilities
In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected product is vulnerable due to the usage of old jQuery libraries.
CVSS Score
7.2
EPSS Score
0.001
Published
2020-03-24
In Honeywell WIN-PAK 4.7.2, Web and prior versions, the header injection vulnerability has been identified, which may allow remote code execution.
CVSS Score
8.8
EPSS Score
0.004
Published
2020-03-24
In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected product is vulnerable to a cross-site request forgery, which may allow an attacker to remotely execute arbitrary code.
CVSS Score
8.8
EPSS Score
0.002
Published
2020-03-24