81 matches found
EUVD-2020-4829
Malware in sbrugna...
EUVD-2023-38489
Malicious code in bioql PyPI...
EUVD-2022-27666
Malicious code in bioql PyPI...
📄 Helmholz Industrial Router REX100 / MBConnectline mbNET.mini Command Injection / DoS
Helmholz Industrial Router REX100 versions prior to 2.3.3 and MBConnectline mbNET.mini versions prior to 2.3.3 suffer from buffer overflow, command injection, denial of service, cross site scripting, and remote SQL injection vulnerabilities. St. Pölten UAS 20250721-0...
Helmholz myREX24、MB Connect Line mymbCONNECT24和MB Connect Line mbCONNECT24 安全漏洞
MB Connect Line mbCONNECT24 and others are products of MB Connect Line, Germany.MB Connect Line mbCONNECT24 is a suite of remote service portals.MB Connect Line mymbCONNECT24 is an on-premise remote maintenance for virtual environments. Helmholz myREX24 and others are products of Helmholz. Helmho...
Helmholz myREX24、MB Connect Line mymbCONNECT24和MB Connect Line mbCONNECT24 安全漏洞
MB Connect Line mbCONNECT24 and others are products of MB Connect Line, Germany.MB Connect Line mbCONNECT24 is a suite of remote service portals.MB Connect Line mymbCONNECT24 is an on-premise remote maintenance for virtual environments. Helmholz myREX24 and others are products of Helmholz. Helmho...
CVE-2024-45276 MB connect line/Helmholz: tmp directory exposed via webservice
An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to missing authentication...
CVE-2024-45276 MB connect line/Helmholz: tmp directory exposed via webservice
An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to missing authentication...
CVE-2024-45276
Summary: CVE-2024-45276 permits an unauthenticated remote attacker to read files in the "/tmp" directory due to missing authentication. Connected sources identify affected hardware as Helmholz MB connect line / REX100 wireless router, with public records noting versions prior to 2.3.1 are impacte...
CVE-2024-45275 MB connect line/Helmholz: Hardcoded user accounts with hard-coded passwords
The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices...
CVE-2024-45275
CVE-2024-45275 concerns a trust-management vulnerability in Helmholz Rex100 wireless routers where two hard-coded user accounts with fixed passwords enable an unauthenticated remote attacker to gain full control of the device. Public sources in the provided connected documents specify affected de...
CVE-2024-45274 MB connect line/Helmholz: Remote code execution via confnet service
An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication...
CVE-2024-45274 MB connect line/Helmholz: Remote code execution via confnet service
An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication...
CVE-2024-45274
CVE-2024-45274 affects Helmholz REX100 and MBConnectline/mbNET.mini routers. Public data cites pre‑patch unauthenticated OS command execution via UDP on the confnet service, caused by missing authentication. Reported affected versions include REX100 < 2.3.3 (fixed in 2.3.3) and MBConnectline/m...
CVE-2024-45273 MB connect line/Helmholz: Weak encryption of configuration file
An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used...
CVE-2024-45273
CVE-2024-45273 describes an unauthenticated local attacker who can decrypt the device’s configuration file due to a weak encryption implementation, leading to compromise of confidentiality, integrity, and availability. The vulnerability is triggered locally (attack vector: LOCAL) with low privile...
CVE-2024-45272
CVE-2024-45272 describes an unauthenticated remote brute-force attack against the credentials of the Remote Service Portal, leading to connection loss with a high likelihood of success (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). The available connected documents corroborate a credential brut...
CVE-2024-45271 MB connect line/Helmholz: Remote code execution due to improper input validation
An unauthenticated local attacker can gain admin privileges by deploying a config file due to improper input validation...
CVE-2024-45271
Consolidated data shows CVE-2024-45271 affects Helmholz Rex100 (wireless router). The vulnerability arises from improper input validation in config deployment, enabling an unauthenticated local attacker to gain admin privileges by deploying a configuration file. Publicly referenced advisories (e....
Helmholz REX100 安全漏洞
Helmholz REX100 is a wireless router from Helmholz. A security vulnerability exists in Helmholz REX100 versions prior to 2.3.1, which stems from a lack of authentication and allows an unauthenticated, remote attacker to gain read access to files in the /tmp directory...