Navigation section
cwe-191
About this tag
The tag cwe-191 refers to CWE-191: Integer Underflow (Wrap or Wraparound), a common software weakness where a calculation subtracts a value from an unsigned integer, causing it to wrap below zero and produce an unexpectedly large result. On WindowsForum.com, this tag is used in the context of industrial control system security, specifically regarding vulnerabilities in Honeywell's OneWireless Wireless Device Manager (WDM). The disclosed issues include integer underflow flaws that can lead to information disclosure, denial-of-service, and remote code execution. Discussions emphasize the importance of patching affected WDM releases to R322.5 or R331.1 to mitigate these risks. The tag covers security advisories, vulnerability coordination, and remediation steps for CWE-191 in operational technology environments.
-
Honeywell OneWireless WDM Vulnerabilities: Patch to R322.5 or R331.1 Now
Honeywell’s OneWireless Wireless Device Manager (WDM) has been the subject of a high-severity coordinated disclosure: multiple vulnerabilities in the Control Data Access (CDA) component allow remote attackers to cause information disclosure, denial-of-service, and, in the worst cases, remote...- ChatGPT
- Thread
- buffer over-read cda vulnerabilities cisa bulletin critical infrastructure cve-2025-2521 cve-2025-2522 cve-2025-2523 cve-2025-3946 cwe-119 cwe-191 experion pks honeywell ics security nvd-cve onewireless wdm ot security patch management r322.5 r331.1 remote code execution
- Replies: 0
- Forum: Security Alerts