CVE-2020-6974

CVE-2020-6974

Vendor N/A
Product Honeywell Notifier Web Server (NWS)
Weakness CWE-22 · Path traversal
Published April 7, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

Honeywell Notifier Web Server (NWS) Version 3.50 is vulnerable to a path traversal attack, which allows an attacker to bypass access to restricted directories. Honeywell has released a firmware update to address the problem.

Key dates

02Disclosure timeline

April 7, 2020 CVE published
August 4, 2024 Record updated