CVE-2020-6982
First published: Tue Mar 24 2020(Updated: )
In Honeywell WIN-PAK 4.7.2, Web and prior versions, the header injection vulnerability has been identified, which may allow remote code execution.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Honeywell WIN-PAK | <=4.7.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-6982.
What is the severity of CVE-2020-6982?
The severity of CVE-2020-6982 is high with a CVSS score of 8.8.
What is the affected software for CVE-2020-6982?
The affected software for CVE-2020-6982 is Honeywell WIN-PAK versions up to and including 4.7.2.
What is the description of CVE-2020-6982?
CVE-2020-6982 is a header injection vulnerability in Honeywell WIN-PAK 4.7.2 and prior versions, which may allow remote code execution.
Is there a fix available for CVE-2020-6982?
To fix CVE-2020-6982, users should update to a version of Honeywell WIN-PAK that is not affected by the vulnerability.
- collector/nvd-index
- agent/author
- agent/references
- agent/severity
- agent/weakness
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/honeywell
- canonical/honeywell win-pak
- version/honeywell win-pak/4.7.2