Honeywell Experion PKS
Moderate fix2 remedies
cpe:2.3:a:honeywell:experion_process_knowledge_system:*:*:*:*:*:*:*
Moderate fix2 remedies
- >= 520.1, <= 520.2 TCU9
- >= 530, <= 530 TCU3
Honeywell Experion PKS Uninitialized Variable Vulnerability in Epic Platform Analyzer Communications Leading to Denial-of-Service
Vulnerability
Patched
A vulnerability has been identified in the Honeywell Experion PKS related to an uninitialized variable in the common Epic Platform Analyzer (EPA) communications. This issue could be exploited to manipulate communication channels, causing a dereferencing of an uninitialized pointer that leads to a denial-of-service condition. The vulnerability affects several Experion PKS products, including C300 PCNT02, EHB, EHPM, ELMM, Classic ENIM, ETN, FIM4, FIM8, PGM, and RFIM. The vulnerable Experion PKS versions range from 520.1 through 520.2 TCU9 and from 530 through 530 TCU3.
Impact
Exploitation of this vulnerability causes a denial-of-service condition by dereferencing an uninitialized pointer, leading to a crash or unresponsiveness in the affected component.
Remediation
Users are advised to update to the latest versions of Honeywell Experion PKS: 520.2 TCU9 HF1 and 530.1 TCU3 HF1.
Added: Jul 10, 2025, 8:33 PM
Updated: Jul 10, 2025, 8:33 PM
Vulnerability Rating
Custom Algorithm
spread
2.6impact
2.5exploitability
7.0remediation
7.7relevance
0.3threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.