Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affects MB-Secure: from V11.04 before V12.53 and MB-Secure PRO from V01.06 before V03.09.Honeywell also recommends updating to the most recent version of this product.
The vulnerability results from improper neutralization of special characters in operating system commands (CWE-78 — OS Command Injection). An attacker with basic network authentication can inject malicious system commands that will be executed by the device with elevated privileges. The attack vector is network-based, requires no user interaction or high initial privileges, and the impact includes complete breach of confidentiality, integrity, and availability of the system and related systems.
An attacker can execute arbitrary operating system commands on the device, leading to complete system takeover, data leakage, configuration modification, or disruption of operations — with potential impact on other systems in the network.
Honeywell MB-Secure firmware must be updated to version V12.53 or later, and Honeywell MB-Secure PRO to version V03.09 or later. The manufacturer additionally recommends migration to the latest available product version. Details are available in Honeywell security notices at https://www.honeywell.com/us/en/product-security#security-notices.
Honeywell MB-Secure versions from V11.04 to V12.52 (before V12.53) and Honeywell MB-Secure PRO versions from V01.06 to V03.08 (before V03.09).
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HHoneywell Mb Secure
HWHoneywellwszystkie wersjeHoneywell Mb Secure Firmware
OSHoneywell11.04 – 12.53 (bez)Honeywell Mb Secure Pro
HWHoneywellwszystkie wersjeHoneywell Mb Secure Pro Firmware
OSHoneywell01.06 – 03.09 (bez)
Related vulnerabilities
Honeywell IQ4x — brak uwierzytelnienia w fabrycznym HMI (CWE-306)
Uwierzytelniony RCE w LenelS2 NetBox (wersje do 5.6.1 włącznie)
Nieuwierzytelniony RCE w Honeywell LenelS2 NetBox (command injection)
Nieautoryzowana modyfikacja plików w Honeywell ControlEdge UOC i VirtualUOC
Improper Input Validation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Com...