CVE-2026-5434 (GCVE-0-2026-5434)
Vulnerability from cvelistv5 – Published: 2026-05-21 08:38 – Updated: 2026-05-21 12:06
VLAI?
Title
Improper storage of sensitive information
Summary
Honeywell Control
Network Module (CNM) contains
insertion of sensitive information into an unintended directory. An attacker could exploit this vulnerability through probing
system files, potentially resulting in unintended
access to protected data.
Severity ?
5.9 (Medium)
CWE
- CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://process.honeywell.com/ | patch |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Honeywell International Inc. | Control Network Module (CNM) |
Affected:
100.1 , ≤ 110.2
(cpe)
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-5434",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-21T12:06:31.149864Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-05-21T12:06:44.395Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"platforms": [
"CNM"
],
"product": "Control Network Module (CNM)",
"vendor": "Honeywell International Inc.",
"versions": [
{
"lessThanOrEqual": "110.2",
"status": "affected",
"version": "100.1",
"versionType": "cpe"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Andreas Kr\u00e4mer, BASF Digital Solutions GmbH"
},
{
"lang": "en",
"type": "finder",
"value": "Martin Floeck, BASF Digital Solutions GmbH"
},
{
"lang": "en",
"type": "finder",
"value": "Stefan Stahl, BASF Digital Solutions GmbH"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eHoneywell Control\nNetwork Module (CNM)\u0026nbsp;\u003cspan\u003econtains\n\u003c/span\u003e\u003cspan\u003einsertion of sensitive \u003c/span\u003e\u003cspan\u003einformation i\u003c/span\u003e\u003cspan\u003ento an unintended directory\u003c/span\u003e\u003cspan\u003e. \u003c/span\u003e\u003cspan\u003eAn attacker could exploit this vulnerability \u003c/span\u003e\u003cspan\u003ethrough\u003c/span\u003e\u003cspan\u003e \u003c/span\u003e\u003cspan\u003eprobing\nsystem files\u003c/span\u003e\u003cspan\u003e, \u003c/span\u003e\u003cspan\u003epotentially resulting in \u003c/span\u003e\u003cspan\u003eunintended\naccess to protected data\u003c/span\u003e\u003cspan\u003e.\u003c/span\u003e\u003c/p\u003e"
}
],
"value": "Honeywell Control\nNetwork Module (CNM)\u00a0contains\ninsertion of sensitive information into an unintended directory. An attacker could exploit this vulnerability through probing\nsystem files, potentially resulting in unintended\naccess to protected data."
}
],
"impacts": [
{
"capecId": "CAPEC-639",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-639: Probe System Files"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-538",
"description": "CWE-538: Insertion of Sensitive Information into Externally-Accessible File or Directory",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-21T08:38:25.477Z",
"orgId": "0dc86260-d7e3-4e81-ba06-3508e030ce8d",
"shortName": "Honeywell"
},
"references": [
{
"tags": [
"patch"
],
"url": "https://process.honeywell.com/"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Improper storage of sensitive information",
"x_generator": {
"engine": "Vulnogram 1.0.2"
}
}
},
"cveMetadata": {
"assignerOrgId": "0dc86260-d7e3-4e81-ba06-3508e030ce8d",
"assignerShortName": "Honeywell",
"cveId": "CVE-2026-5434",
"datePublished": "2026-05-21T08:38:25.477Z",
"dateReserved": "2026-04-02T16:12:23.800Z",
"dateUpdated": "2026-05-21T12:06:44.395Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-5434",
"date": "2026-05-21",
"epss": "0.00031",
"percentile": "0.08931"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-5434\",\"sourceIdentifier\":\"psirt@honeywell.com\",\"published\":\"2026-05-21T09:16:30.410\",\"lastModified\":\"2026-05-21T15:26:35.653\",\"vulnStatus\":\"Undergoing Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Honeywell Control\\nNetwork Module (CNM)\u00a0contains\\ninsertion of sensitive information into an unintended directory. An attacker could exploit this vulnerability through probing\\nsystem files, potentially resulting in unintended\\naccess to protected data.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@honeywell.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.2,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"psirt@honeywell.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-538\"}]}],\"references\":[{\"url\":\"https://process.honeywell.com/\",\"source\":\"psirt@honeywell.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-5434\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-21T12:06:31.149864Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-21T12:06:36.288Z\"}}], \"cna\": {\"title\": \"Improper storage of sensitive information\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Andreas Kr\\u00e4mer, BASF Digital Solutions GmbH\"}, {\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Martin Floeck, BASF Digital Solutions GmbH\"}, {\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Stefan Stahl, BASF Digital Solutions GmbH\"}], \"impacts\": [{\"capecId\": \"CAPEC-639\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-639: Probe System Files\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.9, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Honeywell International Inc.\", \"product\": \"Control Network Module (CNM)\", \"versions\": [{\"status\": \"affected\", \"version\": \"100.1\", \"versionType\": \"cpe\", \"lessThanOrEqual\": \"110.2\"}], \"platforms\": [\"CNM\"], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://process.honeywell.com/\", \"tags\": [\"patch\"]}], \"x_generator\": {\"engine\": \"Vulnogram 1.0.2\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Honeywell Control\\nNetwork Module (CNM)\\u00a0contains\\ninsertion of sensitive information into an unintended directory. An attacker could exploit this vulnerability through probing\\nsystem files, potentially resulting in unintended\\naccess to protected data.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eHoneywell Control\\nNetwork Module (CNM)\u0026nbsp;\u003cspan\u003econtains\\n\u003c/span\u003e\u003cspan\u003einsertion of sensitive \u003c/span\u003e\u003cspan\u003einformation i\u003c/span\u003e\u003cspan\u003ento an unintended directory\u003c/span\u003e\u003cspan\u003e. \u003c/span\u003e\u003cspan\u003eAn attacker could exploit this vulnerability \u003c/span\u003e\u003cspan\u003ethrough\u003c/span\u003e\u003cspan\u003e \u003c/span\u003e\u003cspan\u003eprobing\\nsystem files\u003c/span\u003e\u003cspan\u003e, \u003c/span\u003e\u003cspan\u003epotentially resulting in \u003c/span\u003e\u003cspan\u003eunintended\\naccess to protected data\u003c/span\u003e\u003cspan\u003e.\u003c/span\u003e\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-538\", \"description\": \"CWE-538: Insertion of Sensitive Information into Externally-Accessible File or Directory\"}]}], \"providerMetadata\": {\"orgId\": \"0dc86260-d7e3-4e81-ba06-3508e030ce8d\", \"shortName\": \"Honeywell\", \"dateUpdated\": \"2026-05-21T08:38:25.477Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-5434\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-21T12:06:44.395Z\", \"dateReserved\": \"2026-04-02T16:12:23.800Z\", \"assignerOrgId\": \"0dc86260-d7e3-4e81-ba06-3508e030ce8d\", \"datePublished\": \"2026-05-21T08:38:25.477Z\", \"assignerShortName\": \"Honeywell\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…