EUVD-2026-32119

🗓️ 27 May 2026 07:47:05Reported by EUVDType

Unauthenticated remote attacker exploits dataapi.php _mb24confi_getTagAlarm SQL injection due to improper neutralization, confidentiality risk.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2026-40814	27 May 202607:47	–	attackerkb
Circl	CVE-2026-40814	27 May 202608:11	–	circl
CNNVD	MB Connect Line mbCONNECT24和MB Connect Line mymbCONNECT24 SQL注入漏洞	27 May 202600:00	–	cnnvd
CVE	CVE-2026-40814	27 May 202607:47	–	cve
Cvelist	CVE-2026-40814 Unauthenticated SQLi in _mb24confi_getTagAlarm function	27 May 202607:47	–	cvelist
NVD	CVE-2026-40814	27 May 202608:16	–	nvd
Positive Technologies	PT-2026-43554	27 May 202600:00	–	ptsecurity
Vulnrichment	CVE-2026-40814 Unauthenticated SQLi in _mb24confi_getTagAlarm function	27 May 202607:47	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "3db5ce3c-3ccf-35f0-add4-c5f33e3b96da",
        "vendor": {
          "name": "MB connect line"
        }
      },
      {
        "id": "a8c204d4-23b2-3d67-abfc-61fc421f86b3",
        "vendor": {
          "name": "Helmholz"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0e0031a6-c19b-33ee-9b6c-0c791fdf4c56",
        "product": {
          "name": "mbCONNECT24",
          "vendor": {
            "name": "MB connect line"
          }
        },
        "product_version": "0.0.0 ≤2.20.0"
      },
      {
        "id": "10721ba1-8ed6-32f6-bc35-450bf7988472",
        "product": {
          "name": "myREX24V2",
          "vendor": {
            "name": "Helmholz"
          }
        },
        "product_version": "2.20.0"
      },
      {
        "id": "11146d69-1dec-3968-9e37-7daa21194a17",
        "product": {
          "name": "mymbCONNECT24",
          "vendor": {
            "name": "MB connect line"
          }
        },
        "product_version": "0.0.0 ≤2.20.0"
      },
      {
        "id": "298a2c0f-f9c3-3bdf-be1e-f45edeb5a846",
        "product": {
          "name": "myREX24V2.virtual",
          "vendor": {
            "name": "Helmholz"
          }
        },
        "product_version": "0.0.0 ≤2.20.0"
      },
      {
        "id": "8bf4eed8-1893-3248-85a5-664551ac07f8",
        "product": {
          "name": "myREX24V2",
          "vendor": {
            "name": "Helmholz"
          }
        },
        "product_version": "0.0.0 ≤2.20.0"
      },
      {
        "id": "ade40147-675b-361a-a141-cf21f5e8b81b",
        "product": {
          "name": "mbCONNECT24",
          "vendor": {
            "name": "MB connect line"
          }
        },
        "product_version": "2.20.0"
      },
      {
        "id": "b0f61fc0-e878-3add-9c63-591894f1b015",
        "product": {
          "name": "mymbCONNECT24",
          "vendor": {
            "name": "MB connect line"
          }
        },
        "product_version": "2.20.0"
      },
      {
        "id": "d9299a0d-b66f-3754-a18e-5fbb17961bb4",
        "product": {
          "name": "myREX24V2.virtual",
          "vendor": {
            "name": "Helmholz"
          }
        },
        "product_version": "2.20.0"
      }
    ]
  }
]

Source	Link
certvde	www.certvde.com/en/advisories/VDE-2026-044/

27 May 2026 12:02Current

5.9Medium risk

Vulners AI Score5.9

CVSS 48.7

CVSS 3.17.5

EPSS0.00064

SSVC