9.6 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
76.6%
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file uploads, which may allow an attacker to remotely execute arbitrary code and cause a denial-of-service condition.
www.cisa.gov/uscert/ics/advisories/icsa-21-278-04
www.honeywellprocess.com/library/support/notifications/Customer/SN2021-02-22-01-Experion-C300-CCL.pdf