2 matches found
CVE-2020-10384
An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.6.1. There is a local privilege escalation from the www-data account to the root account...
CVE-2020-10384
MB CONNECT LINE MB CONNECT24/mmbCONNECT24 are affected by CVE-2020-10384: local privilege escalation from www-data to root in all versions up to 2.6.1. Mitigation: upgrade to version 2.71 or higher (as recommended by MB connect line); until patching, enable bruteforce detection and firewall prote...