What is the Honeywell CNA?
Honeywell is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 55 CVE records since 2023.
How many CVEs has Honeywell published?
Honeywell has published 55 CVE records, including 36 in the last two years.
What is Honeywell's CVE data quality grade?
RadicalNotion.AI grades Honeywell's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
What products does Honeywell publish CVEs for?
Honeywell most frequently publishes CVEs for Experion Server, Niagara Framework, niagara, Niagara Enterprise Security, windows.
Which vendors does Honeywell cover?
Honeywell publishes CVEs across 4 distinct vendors, most often Honeywell, Tridium, microsoft, blackberry, linux.
Is Honeywell actively publishing CVEs?
Honeywell is currently active, based on 36 CVEs in the last two years.
What is the average severity of Honeywell's CVEs?
The average CVSS base score across Honeywell's scored CVEs is 7.4.
How many critical CVEs has Honeywell published?
Honeywell has published 10 critical-severity CVEs and 25 high-severity CVEs.
Are any of Honeywell's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of Honeywell's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in Honeywell's CVEs?
Honeywell's CVEs most often map to these CWE weakness types: CWE-121 (Stack-based Buffer Overflow), CWE-787 (Out-of-bounds Write), CWE-122 (Heap-based Buffer Overflow), CWE-732 (Incorrect Permission Assignment for Critical Resource).
How does Honeywell rank among CNAs?
By total CVE volume, Honeywell ranks #160 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
