Moole Vulnerability Database

Find real vulnerabilities before they ship

Critical

CVE-2026-5433

Honeywell Control Network Module (CNM) contains command injection vulnerability in the web interface. An attacker could exploit this vulnerability via command delimiters, potentially resulting in Remote Code Execution (RCE).

VectorNETWORK

PublishedMay 21, 2026, 09:16

Published Bypsirt@honeywell.com

Base Score

Score9.1

Affected Versions

No affected versions found.

References

https://process.honeywell.com/

CVSS Metrics

Base Score

9.1

Vector String

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Base SeverityCritical

Version

3.1

Attack Vector (AV)

NETWORK