Honeywell Alerton Compass
By the Year
In 2024 there have been 0 vulnerabilities in Honeywell Alerton Compass . Alerton Compass did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 1 | 6.50 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Alerton Compass vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Honeywell Alerton Compass Security Vulnerabilities
Honeywell Alerton Compass Software 1.6.5 allows unauthenticated configuration changes from remote users
CVE-2022-30245
6.5 - Medium
- July 15, 2022
Honeywell Alerton Compass Software 1.6.5 allows unauthenticated configuration changes from remote users. This enables configuration data to be stored on the controller and then implemented. A user with malicious intent can send a crafted packet to change the controller configuration without the knowledge of other users, altering the controller's function capabilities. The changed configuration is not updated in the User Interface, which creates an inconsistency between the configuration display and the actual configuration on the controller. After the configuration change, remediation requires reverting to the correct configuration, requiring either physical or remote access depending on the configuration that was altered.
Externally Controlled Reference to a Resource in Another Sphere
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Honeywell Alerton Compass or by Honeywell? Click the Watch button to subscribe.
