MB Connect Line mbCONNECT24和MB Connect Line mymbCONNECT24 SQL注入漏洞

MB Connect Line mbCONNECT24 and MB Connect Line mymb CONNECT24 are products of the German company MB Connect Line. MB Connect Line mbCONNECT24 is a remote service portal. This product supports features such as remote access, data recording, and alerts. MB Connect Line mymbCONNECT24 is an internal...

MB Connect Line mbCONNECT24和MB Connect Line mymbCONNECT24 SQL注入漏洞

MB Connect Line mbCONNECT24 and MB Connect Line mymb CONNECT24 are products of the German company MB Connect Line. MB Connect Line mbCONNECT24 is a remote service portal. This product supports features such as remote access, data recording, and alerts. MB Connect Line mymbCONNECT24 is an internal...

CVE-2020-10383

An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. There is an unauthenticated remote code execution in the commb24sysapi module...

CVE-2020-10381

An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. There is an unauthenticated SQL injection in DATA24, allowing attackers to discover database and table names...

EUVD-2020-23230

Malware in sbrugna...

EUVD-2020-23232

Malware in sbrugna...

EUVD-2020-23236

Malware in sbrugna...

EUVD-2020-23224

Malware in sbrugna...

EUVD-2022-27666

Malicious code in bioql PyPI...

CVE-2025-3092 MB connect line: Observable response discrepancy in mbCONNECT24/mymbCONNECT24

An unauthenticated remote attacker can enumerate valid user names from an unprotected endpoint...

Helmholz myREX24、MB Connect Line mymbCONNECT24和MB Connect Line mbCONNECT24 安全漏洞

MB Connect Line mbCONNECT24 and others are products of MB Connect Line, Germany.MB Connect Line mbCONNECT24 is a suite of remote service portals.MB Connect Line mymbCONNECT24 is an on-premise remote maintenance for virtual environments. Helmholz myREX24 and others are products of Helmholz. Helmho...

CVE-2023-4834

Summary: CVE-2023-4834 affects Red Lion Europe mbCONNECT24, mymbCONNECT24, and Helmholz myREX24 / myREX24.virtual up to version 2.14.2. The root cause is an improperly implemented access validation, enabling an authenticated, low-privileged attacker to read limited, non-critical device informatio...

CVE-2023-0985

An Authorization Bypass vulnerability was found in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and myREX24.virtual version = 2.13.3. An authenticated remote user with low privileges can change the password of any user in the same account. This allows to take over the admin...

CVE-2023-1779

Exposure of Sensitive Information to an unauthorized actor vulnerability in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and myREX24.virtual in versions =2.13.3 allow an authorized remote attacker with low privileges to view a limited amount of another accounts contact...

CVE-2023-1779

CVE-2023-1779 affects MB Connect Line products mbCONNECT24, mymbCONNECT24, Helmholz’ myREX24 and myREX24.virtual (versions

CVE-2023-0985

The CVE-2023-0985 entry concerns an Authorization Bypass in MB Connect Line mbCONNECT24, mymbCONNECT24 and Helmholz’ myREX24 and myREX24.virtual (versions ≤ 2.13.3). The root cause is an authenticated, low-privilege user being able to change the password of any user in the same account, enabling ...

PT-2023-17239 · Unknown +1 · Mbconnect24 +2

Name of the Vulnerable Software and Affected Versions: mbCONNECT24 versions =2.13.3 mymbCONNECT24 versions =2.13.3 myREX24 versions =2.13.3 myREX24.virtual versions =2.13.3 Description: The issue allows an authorized remote attacker with low privileges to view a limited amount of another account'...

MB connect line mbCONNECT24和mymbCONNECT24 信息泄露漏洞

MB connect line mbCONNECT24 and MB connect line mymbCONNECT24 are both products of the German company MB connect line. mb connect line mbCONNECT24 is a set of remote service portals. The product supports remote access, data logging and alarms. MB connect line mymbCONNECT24 is an in-house remote...

CVE-2022-22520

A remote, unauthenticated attacker can enumerate valid users by sending specific requests to the webservice of MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2...

Code injection

A remote, unauthenticated attacker can enumerate valid users by sending specific requests to the webservice of MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2...