- Description
- Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affects MB-Secure: from V11.04 before V12.53 and MB-Secure PRO from V01.06 before V03.09.Honeywell also recommends updating to the most recent version of this product.
- Source
- psirt@honeywell.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- Hype score
- Not currently trending
🚨 Critical #vulnerability (CVE-2025-2605) found in Honeywell MB-Secure systems. Command injection flaw rated CVSS 9.9 could lead to system takeover. Immediate patching required. Details 👉 https://t.co/6GQ6nQh3qp #cybersecurity #infosec #ICSsecurity
@threatsbank
5 May 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-2605 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affec… https://t.co/O0Ywnp58BQ
@CVEnew
3 May 2025
186 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-2605 ⚠️🔴 CRITICAL (9.9) 🏢 Honeywell - MB-Secure 🏗️ V11.04 🔗 https://t.co/AsFW6FY2TN #CyberCron #VulnAlert #InfoSec https://t.co/KnGqwiaS82
@cybercronai
2 May 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-2605: CRITICAL] Vulnerability in Honeywell MB-Secure software allows OS command injection leading to privilege abuse. Update to the latest version to stay secure.#cve,CVE-2025-2605,#cybersecurity https://t.co/96od1yHuFR https://t.co/vc1FfY0I8F
@CveFindCom
2 May 2025
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:honeywell:mb-secure_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A3948BD-0AA0-4F44-87DE-6F93FE58A3CC",
"versionEndExcluding": "12.53",
"versionStartIncluding": "11.04"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:honeywell:mb-secure:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "068F05DB-54F1-4F6B-8A1B-501E7841469B"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:honeywell:mb-secure_pro_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D6782306-FD38-4001-9F99-9B1A9EC820F9",
"versionEndExcluding": "03.09",
"versionStartIncluding": "01.06"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:honeywell:mb-secure_pro:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F8F28351-A605-4F24-B62B-408D77C661E7"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]