high
7.5
CWE
306
Advisory Published
Updated

CVE-2022-30313

First published: Thu Jul 28 2022(Updated: )

Honeywell Experion PKS Safety Manager through 2022-05-06 has Missing Authentication for a Critical Function. According to FSCT-2022-0051, there is a Honeywell Experion PKS Safety Manager multiple proprietary protocols with unauthenticated functionality issue. The affected components are characterized as: Honeywell Experion TCP (51000/TCP), Safety Builder (51010/TCP). The potential impact is: Manipulate controller state, Manipulate controller configuration, Manipulate controller logic, Manipulate controller files, Manipulate IO. The Honeywell Experion PKS Distributed Control System (DCS) Safety Manager utilizes several proprietary protocols for a wide variety of functionality, including process data acquisition, controller steering and configuration management. These protocols include: Experion TCP (51000/TCP) and Safety Builder (51010/TCP). None of these protocols have any authentication features, allowing any attacker capable of communicating with the ports in question to invoke (a subset of) desired functionality. There is no authentication functionality on the protocols in question. An attacker capable of invoking the protocols' functionalities could achieve a wide range of adverse impacts, including (but not limited to), the following: for Experion TCP (51000/TCP): Issue IO manipulation commands, Issue file read/write commands; and for Safety Builder (51010/TCP): Issue controller start/stop commands, Issue logic download/upload commands, Issue file read commands, Issue system time change commands. A mitigating factor with regards to some, but not all, of the above functionality is that these require the Safety Manager physical keyswitch to be in the right position.

Credit: cve@mitre.org cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Honeywell Safety Manager Firmware
Honeywell Safety Manager
All of
Honeywell Safety Manager Firmware
Honeywell Safety Manager

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2022-30313?

    CVE-2022-30313 is a vulnerability in Honeywell Experion PKS Safety Manager that allows unauthenticated access to critical functions.

  • What is the severity of CVE-2022-30313?

    CVE-2022-30313 has a severity rating of 7.5 (high).

  • How does CVE-2022-30313 affect Honeywell Experion PKS Safety Manager?

    CVE-2022-30313 affects Honeywell Experion PKS Safety Manager by allowing unauthenticated access to critical functions.

  • What is the affected software for CVE-2022-30313?

    The affected software for CVE-2022-30313 is Honeywell Safety Manager Firmware.

  • How can I fix CVE-2022-30313?

    To fix CVE-2022-30313, it is recommended to apply the necessary security patches or updates provided by Honeywell.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203