The vulnerability of industrial remote access systems mymbCONNECT24 and mb CONNECT24, related to insecure management of privileges, allows a hacker to terminate web2go sessions in a account that he does not have access to.

The vulnerability of industrial remote access systems mymbCONNECT24 and mb CONNECT24 is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to terminate web2go sessions in a user’s account that they have no access to...

CVE-2020-12528

An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. Improper use of access validation allows a logged in user to kill web2go sessions in the account he should not have access to...

CVE-2020-12528

An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. Improper use of access validation allows a logged in user to kill web2go sessions in the account he should not have access to...

CVE-2020-12528

An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. Improper use of access validation allows a logged in user to kill web2go sessions in the account he should not have access to...