Skip to main content

CVE-2023-3711

Description

Session Fixation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Session Credential Falsification through Prediction.This issue affects PM43 versions prior to P10.19.050004. Update to the latest available firmware version of the respective printers to version MR19.5 (e.g. P10.19.050006).

NVD
Severity: HIGH
CVE ID: CVE-2023-3711
CVSS Score: 8.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Honeywell International Inc.
Severity: MEDIUM
CVE ID: CVE-2023-3711
CVSS Score: 6.4
CVSS Metrics: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L

Refrence: NVDMITRE

Proof Of Concept

vpxuser

Refrence: GitHub

Last updated on by Vulnerability_bot_v1.3.8