Honeywell: >> Notifier Webserver >> 3.50 Security Vulnerabilities
Honeywell Notifier Web Server (NWS) Version 3.50 is vulnerable to a path traversal attack, which allows an attacker to bypass access to restricted directories. Honeywell has released a firmware update to address the problem.
CVSS Score
9.8
EPSS Score
0.001
Published
2020-04-07
In Notifier Web Server (NWS) Version 3.50 and earlier, the Honeywell Fire Web Server’s authentication may be bypassed by a capture-replay attack from a web browser.
CVSS Score
9.1
EPSS Score
0.001
Published
2020-03-24