CVE-2026-3611 — The Honeywell IQ4x building management controller, exposes its full web-based HMI without authentication in its factory-default configuration. With no user module configured, security is disabled by d — CVE Database · The Intelligence Room