EUVD-2026-32151

🗓️ 27 May 2026 08:06:36Reported by EUVDType

Authenticated attacker can inject payloads via the config generator, causing code execution.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-40852	27 May 202608:06	–	attackerkb
Circl	CVE-2026-40852	27 May 202608:12	–	circl
CNNVD	MB Connect Line mbNET和MB Connect Line mbNET.mini 操作系统命令注入漏洞	27 May 202600:00	–	cnnvd
CVE	CVE-2026-40852	27 May 202608:06	–	cve
Cvelist	CVE-2026-40852 Command injection via malicious configuration	27 May 202608:06	–	cvelist
NVD	CVE-2026-40852	27 May 202609:16	–	nvd
Positive Technologies	PT-2026-43618	27 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-40852	5 Jun 202619:14	–	redhatcve
Vulnrichment	CVE-2026-40852 Command injection via malicious configuration	27 May 202608:06	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "89d6fb39-1242-3425-b851-58012d0683b1",
        "vendor": {
          "name": "MB connect line"
        }
      },
      {
        "id": "93e0985e-b17d-3403-9e5d-aa12b714ef02",
        "vendor": {
          "name": "Helmholz"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "231ba237-1f2d-317a-9b7c-8834e855a9e6",
        "product": {
          "name": "mbNET.mini",
          "vendor": {
            "name": "MB connect line"
          }
        },
        "product_version": "3.0.2"
      },
      {
        "id": "3fbd3563-b672-3652-88d1-0061f03b3fab",
        "product": {
          "name": "REX200/250",
          "vendor": {
            "name": "Helmholz"
          }
        },
        "product_version": "8.4.4"
      },
      {
        "id": "63beef2a-65ff-3bb2-8124-1116aaad3797",
        "product": {
          "name": "mbNET/mbNET.rokey",
          "vendor": {
            "name": "MB connect line"
          }
        },
        "product_version": "8.4.4"
      },
      {
        "id": "85811398-9983-36e8-8bea-5f0d8f9fea46",
        "product": {
          "name": "REX200/250",
          "vendor": {
            "name": "Helmholz"
          }
        },
        "product_version": "0.0.0 ≤8.4.4"
      },
      {
        "id": "89ce6ae7-09e8-35cc-92aa-ef682ed332fd",
        "product": {
          "name": "mbNET.mini",
          "vendor": {
            "name": "MB connect line"
          }
        },
        "product_version": "0.0.0 ≤3.0.2"
      },
      {
        "id": "bdf2e6b7-03c8-3323-b0b4-b7c14e33a683",
        "product": {
          "name": "REX100",
          "vendor": {
            "name": "Helmholz"
          }
        },
        "product_version": "0.0.0 ≤3.0.2"
      },
      {
        "id": "cede083a-9e47-368d-9b6a-a9e666c01815",
        "product": {
          "name": "mbNET/mbNET.rokey",
          "vendor": {
            "name": "MB connect line"
          }
        },
        "product_version": "0.0.0 ≤8.4.4"
      },
      {
        "id": "e366cabd-e937-3a6f-a0ef-6521e9517ae9",
        "product": {
          "name": "REX100",
          "vendor": {
            "name": "Helmholz"
          }
        },
        "product_version": "3.0.2"
      }
    ]
  }
]

Source	Link
certvde	www.certvde.com/en/advisories/VDE-2026-054/

27 May 2026 11:54Current

6Medium risk

Vulners AI Score6

CVSS 3.17.2

EPSS0.00397

SSVC