Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Onewireless_network_wireless_device_manager_firmware
(Honeywell)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 3 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2023-05-30 | CVE-2022-43485 | Use of Insufficiently Random Values in Honeywell OneWireless. This vulnerability may allow attacker to manipulate claims in client's JWT token. This issue affects OneWireless version 322.1 | Onewireless_network_wireless_device_manager_firmware | 6.5 | ||
2023-05-30 | CVE-2022-46361 | An attacker having physical access to WDM can plug USB device to gain access and execute unwanted commands. A malicious user could enter a system command along with a backup configuration, which could result in the execution of unwanted commands. This issue affects OneWireless all versions up to 322.1 and fixed in version 322.2. | Onewireless_network_wireless_device_manager_firmware | 6.8 | ||
2023-05-30 | CVE-2022-4240 | Missing Authentication for Critical Function vulnerability in Honeywell OneWireless allows Authentication Bypass. This issue affects OneWireless version 322.1 | Onewireless_network_wireless_device_manager_firmware | 7.5 |