Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2025/05/19 12:0 a.m.115 views

📄 Honeywell MB-Secure Command Injection

Honeywell MB-Secure versions 11.04 and up to 12.53 and PRO versions from 01.06 to 03.09 suffer from an authenticated command injection vulnerability. SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Authenticated Comman...

9.9CVSS7.7AI score0.1017EPSS
Exploits1
NVD
NVD
added 2025/05/02 1:15 p.m.19 views

CVE-2025-2605

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affects MB-Secure: from V11.04 before V12.53 and MB-Secure PRO from V01.06 before V03.09.Honeywell also recommends updating to the most...

9.9CVSS0.1017EPSS
Exploits1References2
Circl
Circl
added 2025/05/02 1:15 p.m.19 views

CVE-2025-2605

creationtimestamp| type| source ---|---|--- 2025-05-02 13:15:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14477 2025-05-02 13:38:04+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114438509930269915 2025-05-02 14:45:07+00:00| seen|...

9.9CVSS7.8AI score0.1017EPSS
Exploits1References7
CVE
CVE
added 2025/05/02 12:39 p.m.69 views

CVE-2025-2605

CVE-2025-2605 is an OS command injection vulnerability in Honeywell MB-Secure and MB-Secure PRO. The issue arises from improper neutralization of special elements used in OS commands, enabling privilege abuse. Affected products and versions: MB-Secure from V11.04 before V12.53; MB-Secure PRO from...

9.9CVSS9.6AI score0.1017EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/05/02 12:39 p.m.29 views

CVE-2025-2605 Authenticated command injection

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affects MB-Secure: from V11.04 before V12.53 and MB-Secure PRO from V01.06 before V03.09.Honeywell also recommends updating to the most...

9.9CVSS0.1017EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/02 12:39 p.m.10 views

CVE-2025-2605 Authenticated command injection

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affects MB-Secure: from V11.04 before V12.53 and MB-Secure PRO from V01.06 before V03.09.Honeywell also recommends updating to the most...

9.9CVSS7AI score0.1017EPSS
Exploits1References1
Rows per page
Query Builder