Every CVE whose affected-product data names Honeywell Win-pak, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-6982 — CVSS 8.8 (high): In Honeywell WIN-PAK 4.7.2, Web and prior versions, the header injection vulnerability has been identified, which may allow remote code…
CVE-2020-7005 — CVSS 8.8 (high): In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected product is vulnerable to a cross-site request forgery, which may allow an…
CVE-2020-6978 — CVSS 7.2 (high): In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected product is vulnerable due to the usage of old jQuery libraries.