Marel Food Processing Systems Security Bypass and Arbitrary File Upload Vulnerabilities
Marel Food Processing Systems are prone to following security vulnerabilities:
1. A security-bypass vulnerability.
2. An arbitrary file-upload vulnerability.
Attackers can exploit these issues to upload arbitrary files and gain unauthorized administrative access to the affected devices.
The following products are vulnerable:
SensorX23 X-ray machine
SensorX25 X-ray machine
MWS2 weighing system
M3000 terminal, M3210 terminal , M3000 desktop software, and MAC4 controller associated with the following systems:
Check Bin Grader
IPM3 Dual Cam v132
IPM3 Dual Cam v139
IPM3 Single Cam v132
SensorX13 QC flow line
SensorX23 QC Master
SensorX23 QC Slave