6 matches found
📄 Honeywell MB-Secure Command Injection
Honeywell MB-Secure versions 11.04 and up to 12.53 and PRO versions from 01.06 to 03.09 suffer from an authenticated command injection vulnerability. SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Authenticated Comman...
CVE-2025-2605
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affects MB-Secure: from V11.04 before V12.53 and MB-Secure PRO from V01.06 before V03.09.Honeywell also recommends updating to the most...
CVE-2025-2605
creationtimestamp| type| source ---|---|--- 2025-05-02 13:15:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14477 2025-05-02 13:38:04+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114438509930269915 2025-05-02 14:45:07+00:00| seen|...
CVE-2025-2605
CVE-2025-2605 is an OS command injection vulnerability in Honeywell MB-Secure and MB-Secure PRO. The issue arises from improper neutralization of special elements used in OS commands, enabling privilege abuse. Affected products and versions: MB-Secure from V11.04 before V12.53; MB-Secure PRO from...
CVE-2025-2605 Authenticated command injection
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affects MB-Secure: from V11.04 before V12.53 and MB-Secure PRO from V01.06 before V03.09.Honeywell also recommends updating to the most...
CVE-2025-2605 Authenticated command injection
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affects MB-Secure: from V11.04 before V12.53 and MB-Secure PRO from V01.06 before V03.09.Honeywell also recommends updating to the most...