CVE-2020-6974

EPSS 1.9%CWE-22

Honeywell Notifier Web Server (NWS) Version 3.50 is vulnerable to a path traversal attack, which allows an attacker to bypass access to restricted directories. Honeywell has released a firmware update to address the problem.

Affected products

n/a · Honeywell Notifier Web Server (NWS)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.us-cert.gov/ics/advisories/icsa-20-051-03