CVE-2025-61792

Name of the Vulnerable Software and Affected Versions Quadient DS-700 iQ devices through 2025-09-30

Description Quadient DS-700 iQ devices may experience a race condition when quickly clicking the Question Mark button, the Help Button, the About button, and the Help Button in sequence. This can potentially lead to a transition from kiosk mode to local administrative access. The issue was observed sporadically during limited testing, raising some doubt about the reproducibility of a cybersecurity issue, as sporadic crashes could also be caused by hardware faults. The reporter also noted other issues, such as potential access via USB due to a lack of physical security measures, which are not considered cybersecurity issues. The risks are potentially limited to insider threats within a controlled environment.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.