← Back to home
ICSA-20-175-02  ·  Published 2020-06-23  ·  View on CISA ICS-CERT ↗

Honeywell ControlEdge PLC and RTU

CVSS 5.9 MEDIUM

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to obtain passwords and session tokens.

CVEs (2)

Remediations

  • Honeywell provided detailed information for mitigation on the insecure communication in Control Edge PLC\RTU. Please access the support document SN2020-04-17-01-ConotrolEdge-PLC-and- and-RTU-Secure-Communication (login required). Download this document and follow the step by step instructions. The user must be logged in to access the security notification.
  • Users who have difficulty accessing the document can contact Honeywell support.

Affected Vendors

Honeywell

Affected Products (2)

Honeywell · ControlEdge PLC R130.2 | R140 | R150 | R151
Honeywell · ControlEdge RTU R101 | R110 | R140 | R150 | R151

Affected Sectors

Chemical, Critical Manufacturing, Energy, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more