VYPR
Unrated severityNVD Advisory· Published May 2, 2025· Updated May 17, 2025

Authenticated command injection

CVE-2025-2605

Description

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affects MB-Secure: from V11.04 before V12.53 and MB-Secure PRO from V01.06 before V03.09.Honeywell also recommends updating to the most recent version of this product.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Honeywell/MB-Securellm-create2 versions
    >=V11.04, <V12.53+ 1 more
    • (no CPE)range: >=V11.04, <V12.53
    • (no CPE)range: V11.04

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.