Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-45275 (GCVE-0-2024-45275)
Vulnerability from cvelistv5 – Published: 2024-10-15 10:28 – Updated: 2024-10-16 17:39
VLAI
EPSS
Title
MB connect line/Helmholz: Hardcoded user accounts with hard-coded passwords
Summary
The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.
Severity
9.8 (Critical)
CWE
- CWE-798 - Use of Hard-coded Credentials
Assigner
References
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| MB connect line | mbNET.mini |
Affected:
0.0.0 , ≤ 2.2.13
(semver)
|
|
| Helmholz | REX100 |
Affected:
0.0.0 , ≤ 2.2.13
(semver)
|
Date Public
2024-10-15 08:00
Credits
Moritz Abrell
SySS GmbH
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:mb_connect_line:mbnet.mini:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unaffected",
"product": "mbnet.mini",
"vendor": "mb_connect_line",
"versions": [
{
"lessThanOrEqual": "2.2.13",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"cpes": [
"cpe:2.3:a:helmholz:rex_100_firmware:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unaffected",
"product": "rex_100_firmware",
"vendor": "helmholz",
"versions": [
{
"lessThanOrEqual": "2.2.13",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-45275",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-15T13:31:57.475980Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-15T13:33:13.397Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-10-16T17:39:58.106Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-064.txt"
}
],
"title": "CVE Program Container",
"x_generator": {
"engine": "ADPogram 0.0.1"
}
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "mbNET.mini",
"vendor": "MB connect line",
"versions": [
{
"lessThanOrEqual": "2.2.13",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "REX100",
"vendor": "Helmholz",
"versions": [
{
"lessThanOrEqual": "2.2.13",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Moritz Abrell"
},
{
"lang": "en",
"type": "reporter",
"user": "00000000-0000-4000-9000-000000000000",
"value": "SySS GmbH"
}
],
"datePublic": "2024-10-15T08:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.\u003cbr\u003e"
}
],
"value": "The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-798",
"description": "CWE-798 Use of Hard-coded Credentials",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-10-15T10:28:37.223Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://cert.vde.com/en/advisories/VDE-2024-056"
},
{
"url": "https://cert.vde.com/en/advisories/VDE-2024-066"
}
],
"source": {
"advisory": "VDE-2024-056, VDE-2024-066",
"defect": [
"CERT@VDE#641679",
"CERT@VDE#641692"
],
"discovery": "UNKNOWN"
},
"title": "MB connect line/Helmholz: Hardcoded user accounts with hard-coded passwords",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2024-45275",
"datePublished": "2024-10-15T10:28:37.223Z",
"dateReserved": "2024-08-26T09:19:01.266Z",
"dateUpdated": "2024-10-16T17:39:58.106Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-45275",
"date": "2026-05-29",
"epss": "0.0343",
"percentile": "0.87669"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-45275\",\"sourceIdentifier\":\"info@cert.vde.com\",\"published\":\"2024-10-15T11:15:12.487\",\"lastModified\":\"2024-11-21T09:37:35.750\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.\"},{\"lang\":\"es\",\"value\":\"Los dispositivos contienen dos cuentas de usuario codificadas con contrase\u00f1as codificadas que permiten a un atacante remoto no autenticado tener control total de los dispositivos afectados.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"info@cert.vde.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"info@cert.vde.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-798\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:mbconnectline:mbnet.mini_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.3.1\",\"matchCriteriaId\":\"E4E80D53-0907-45AF-A03B-A093C5CEA33B\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:mbconnectline:mbnet.mini:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1D1B769-DA91-4F0C-AD34-D735B7A8B8FF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:helmholz:rex_100_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.3.1\",\"matchCriteriaId\":\"F226166A-1261-43F9-81EC-E1C0FC9CB6E6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:helmholz:rex_100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7E8BE39-3C4A-484A-A34D-3CB4B46E41FA\"}]}]}],\"references\":[{\"url\":\"https://cert.vde.com/en/advisories/VDE-2024-056\",\"source\":\"info@cert.vde.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert.vde.com/en/advisories/VDE-2024-066\",\"source\":\"info@cert.vde.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-064.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-064.txt\"}], \"x_generator\": {\"engine\": \"ADPogram 0.0.1\"}, \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-10-16T17:39:58.106Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-45275\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-15T13:31:57.475980Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:mb_connect_line:mbnet.mini:*:*:*:*:*:*:*:*\"], \"vendor\": \"mb_connect_line\", \"product\": \"mbnet.mini\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"2.2.13\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:a:helmholz:rex_100_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"helmholz\", \"product\": \"rex_100_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"2.2.13\"}], \"defaultStatus\": \"unaffected\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-15T13:33:06.534Z\"}}], \"cna\": {\"title\": \"MB connect line/Helmholz: Hardcoded user accounts with hard-coded passwords\", \"source\": {\"defect\": [\"CERT@VDE#641679\", \"CERT@VDE#641692\"], \"advisory\": \"VDE-2024-056, VDE-2024-066\", \"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Moritz Abrell\"}, {\"lang\": \"en\", \"type\": \"reporter\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"SySS GmbH\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 9.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"MB connect line\", \"product\": \"mbNET.mini\", \"versions\": [{\"status\": \"affected\", \"version\": \"0.0.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"2.2.13\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Helmholz\", \"product\": \"REX100\", \"versions\": [{\"status\": \"affected\", \"version\": \"0.0.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"2.2.13\"}], \"defaultStatus\": \"unaffected\"}], \"datePublic\": \"2024-10-15T08:00:00.000Z\", \"references\": [{\"url\": \"https://cert.vde.com/en/advisories/VDE-2024-056\"}, {\"url\": \"https://cert.vde.com/en/advisories/VDE-2024-066\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.\u003cbr\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-798\", \"description\": \"CWE-798 Use of Hard-coded Credentials\"}]}], \"providerMetadata\": {\"orgId\": \"270ccfa6-a436-4e77-922e-914ec3a9685c\", \"shortName\": \"CERTVDE\", \"dateUpdated\": \"2024-10-15T10:28:37.223Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-45275\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-10-16T17:39:58.106Z\", \"dateReserved\": \"2024-08-26T09:19:01.266Z\", \"assignerOrgId\": \"270ccfa6-a436-4e77-922e-914ec3a9685c\", \"datePublished\": \"2024-10-15T10:28:37.223Z\", \"assignerShortName\": \"CERTVDE\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
FKIE_CVE-2024-45275
Vulnerability from fkie_nvd - Published: 2024-10-15 11:15 - Updated: 2024-11-21 09:37
Severity
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mbconnectline | mbnet.mini_firmware | * | |
| mbconnectline | mbnet.mini | - | |
| helmholz | rex_100_firmware | * | |
| helmholz | rex_100 | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:mbconnectline:mbnet.mini_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E4E80D53-0907-45AF-A03B-A093C5CEA33B",
"versionEndExcluding": "2.3.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:mbconnectline:mbnet.mini:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A1D1B769-DA91-4F0C-AD34-D735B7A8B8FF",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:helmholz:rex_100_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F226166A-1261-43F9-81EC-E1C0FC9CB6E6",
"versionEndExcluding": "2.3.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:helmholz:rex_100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E7E8BE39-3C4A-484A-A34D-3CB4B46E41FA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices."
},
{
"lang": "es",
"value": "Los dispositivos contienen dos cuentas de usuario codificadas con contrase\u00f1as codificadas que permiten a un atacante remoto no autenticado tener control total de los dispositivos afectados."
}
],
"id": "CVE-2024-45275",
"lastModified": "2024-11-21T09:37:35.750",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "info@cert.vde.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-10-15T11:15:12.487",
"references": [
{
"source": "info@cert.vde.com",
"tags": [
"Third Party Advisory"
],
"url": "https://cert.vde.com/en/advisories/VDE-2024-056"
},
{
"source": "info@cert.vde.com",
"tags": [
"Third Party Advisory"
],
"url": "https://cert.vde.com/en/advisories/VDE-2024-066"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-064.txt"
}
],
"sourceIdentifier": "info@cert.vde.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-798"
}
],
"source": "info@cert.vde.com",
"type": "Secondary"
}
]
}
GHSA-GWQP-V8M6-GJCC
Vulnerability from github – Published: 2024-10-15 12:30 – Updated: 2024-10-15 12:30
VLAI
Details
The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.
Severity
9.8 (Critical)
{
"affected": [],
"aliases": [
"CVE-2024-45275"
],
"database_specific": {
"cwe_ids": [
"CWE-798"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-10-15T11:15:12Z",
"severity": "CRITICAL"
},
"details": "The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.",
"id": "GHSA-gwqp-v8m6-gjcc",
"modified": "2024-10-15T12:30:37Z",
"published": "2024-10-15T12:30:37Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45275"
},
{
"type": "WEB",
"url": "https://cert.vde.com/en/advisories/VDE-2024-056"
},
{
"type": "WEB",
"url": "https://cert.vde.com/en/advisories/VDE-2024-066"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
VDE-2024-056
Vulnerability from csaf_mbconnectlinegmbh - Published: 2024-10-15 08:00 - Updated: 2025-08-27 10:00Summary
MB connect line: Multiple Vulnerabilities in mbNET.mini Product
Notes
Summary: Multiple vulnerabilities have been discovered in MB connect line mbNET.mini product allowing for RCE or unauthorized file access.
Impact: CVE-2024-45271, CVE-2024-45274 and CVE-2024-45275 allow remote code execution with system privileges, resulting in full compromise of the device.
CVE-2024-45273 allows undetectable tampering and manipulation of encrypted configuration files.
CVE-2024-45276 allows unauthenticated access to potential sensitive files.
Remediation: Update mbNET.mini to the version 2.3.1
An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
An unauthenticated local attacker can gain admin privileges by deploying a config file due to improper input validation.
8.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.
8.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to missing authentication.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
References
5 references
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
},
{
"names": [
"Moritz Abrell"
],
"organization": "SySS GmbH",
"summary": "reporting",
"urls": [
"https://www.syss.de"
]
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "Multiple vulnerabilities have been discovered in MB connect line mbNET.mini product allowing for RCE or unauthorized file access.",
"title": "Summary"
},
{
"category": "description",
"text": "CVE-2024-45271, CVE-2024-45274 and CVE-2024-45275 allow remote code execution with system privileges, resulting in full compromise of the device.\n\nCVE-2024-45273 allows undetectable tampering and manipulation of encrypted configuration files.\n\nCVE-2024-45276 allows unauthenticated access to potential sensitive files.",
"title": "Impact"
},
{
"category": "description",
"text": "Update mbNET.mini to the version 2.3.1",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "security-team@mbconnectline.de",
"name": "MB connect line GmbH",
"namespace": "https://mbconnectline.com"
},
"references": [
{
"category": "external",
"summary": "Product security incident reports",
"url": "https://mbconnectline.com/security-advice"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for MB connect line",
"url": "https://certvde.com/en/advisories/vendor/mbconnectline"
},
{
"category": "self",
"summary": "VDE-2024-056: MB connect line: Multiple Vulnerabilities in mbNET.mini Product - HTML",
"url": "https://certvde.com/en/advisories/VDE-2024-056"
},
{
"category": "self",
"summary": "Security Incident Management SIM#2024-04 - PDF",
"url": "https://advisories.mbconnectline.com/pdf/SIM2024-04.pdf"
},
{
"category": "self",
"summary": "VDE-2024-056: MB connect line: Multiple Vulnerabilities in mbNET.mini Product - CSAF",
"url": "https://mbconnectline.csaf-tp.certvde.com/.well-known/csaf/white/2024/vde-2024-056.json"
}
],
"title": "MB connect line: Multiple Vulnerabilities in mbNET.mini Product",
"tracking": {
"aliases": [
"VDE-2024-056",
"SIM#2024-04"
],
"current_release_date": "2025-08-27T10:00:00.000Z",
"generator": {
"date": "2025-08-28T07:38:38.503Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.34"
}
},
"id": "VDE-2024-056",
"initial_release_date": "2024-10-15T08:00:00.000Z",
"revision_history": [
{
"date": "2024-10-15T08:00:00.000Z",
"number": "1.0.0",
"summary": "Initial revision."
},
{
"date": "2024-11-06T11:27:01.000Z",
"number": "1.0.1",
"summary": "Fix: correct certvde domain, added self-reference"
},
{
"date": "2025-05-14T12:28:19.000Z",
"number": "1.0.2",
"summary": "Fix: version space"
},
{
"date": "2025-08-27T10:00:00.000Z",
"number": "1.1.2",
"summary": "Update: CWE from CVE-2024-45271, Revision History"
}
],
"status": "final",
"version": "1.1.2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "mbNET.mini",
"product": {
"name": "MB connect line mbNET.mini",
"product_id": "CSAFPID-11004"
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.2.13",
"product": {
"name": "Firmware \u003c=2.2.13",
"product_id": "CSAFPID-21004"
}
},
{
"category": "product_version",
"name": "2.3.1",
"product": {
"name": "Firmware 2.3.1",
"product_id": "CSAFPID-22001"
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "MB connect line"
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.2.13 installed on MB connect line mbNET.mini",
"product_id": "CSAFPID-31005"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11004"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.3.1 installed on MB connect line mbNET.mini",
"product_id": "CSAFPID-32001"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11004"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45274",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update mbNET.mini to the version 2.3.1\n",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45274"
},
{
"cve": "CVE-2024-45275",
"cwe": {
"id": "CWE-798",
"name": "Use of Hard-coded Credentials"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update mbNET.mini to the version 2.3.1",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45275"
},
{
"cve": "CVE-2024-45271",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated local attacker can gain admin privileges by deploying a config file due to improper input validation.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update mbNET.mini to the version 2.3.1",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.4,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 8.4,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45271"
},
{
"cve": "CVE-2024-45273",
"cwe": {
"id": "CWE-261",
"name": "Weak Encoding for Password"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update mbNET.mini to the version 2.3.1",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.4,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 8.4,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45273"
},
{
"cve": "CVE-2024-45276",
"cwe": {
"id": "CWE-552",
"name": "Files or Directories Accessible to External Parties"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated remote attacker can get read access to files in the \"/tmp\" directory due to missing authentication.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update mbNET.mini to the version 2.3.1",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45276"
}
]
}
VDE-2024-068
Vulnerability from csaf_mbconnectlinegmbh - Published: 2024-10-15 08:00 - Updated: 2026-03-06 08:00Summary
MB connect line: Multiple Vulnerabilities in MB connect line Products
Notes
Summary: Multiple vulnerabilities have been discovered in MB connect line products that could allow RCE or unauthorized file access.
CVE-2024-45272 affects the mbCONNECT24 and mymbCONNECT24 products.
CVE-2024-45273 affects the mbNET/mbNET.rokey, mbCONNECT24, mymbCONNECT24, mbNET HW1, and mbSPIDER products.
CVE-2024-45275 affects only the mbNET HW1 product.
Impact: CVE-2024-45272 allows brute-force attacks against remote credentials with a high probability of success.
CVE-2024-45273 allows undetectable tampering and manipulation of encrypted configuration files.
CVE-2024-45275 allow remote code execution with system privileges, resulting in full compromise of the device
Remediation: Update mbNET/mbNET.rokey to the version 8.2.1\
Update mbCONNECT24, mymbCONNECT24 to the version 2.16.3\
**Note**: mbNET HW1 and mbSPIDER are EOL and will not receive any further updates.
The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.
9.8 (Critical)
Vendor Fix
**Note**: mbNET HW1 and mbSPIDER are EOL and will not receive any further updates.
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31003 | — |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-33001 | — |
An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.
8.4 (High)
Vendor Fix
Update mbNET/mbNET.rokey to the version 8.2.1\
Update mbCONNECT24, mymbCONNECT24 to the version 2.16.3\
**Note**: mbNET HW1 and mbSPIDER are EOL and will not receive any further updates.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — | ||
| Unresolved product id: CSAFPID-32004 | — |
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-33002 | — | ||
| Unresolved product id: CSAFPID-33003 | — | ||
| Unresolved product id: CSAFPID-33001 | — | ||
| Unresolved product id: CSAFPID-33004 | — | ||
| Unresolved product id: CSAFPID-33005 | — |
An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with a high chance of success, resulting in connection lost.
7.5 (High)
Vendor Fix
Update mbCONNECT24, mymbCONNECT24 to the version 2.16.3
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32003 | — | ||
| Unresolved product id: CSAFPID-32004 | — |
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — |
Last affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-33002 | — | ||
| Unresolved product id: CSAFPID-33003 | — |
References
5 references
Acknowledgments
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
},
{
"names": [
"Moritz Abrell"
],
"organization": "SySS GmbH",
"summary": "reporting",
"urls": [
"https://www.syss.de"
]
},
{
"organization": "Marcel Rick-Cen",
"summary": "reporting"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "Multiple vulnerabilities have been discovered in MB connect line products that could allow RCE or unauthorized file access.\n\nCVE-2024-45272 affects the mbCONNECT24 and mymbCONNECT24 products.\n\nCVE-2024-45273 affects the mbNET/mbNET.rokey, mbCONNECT24, mymbCONNECT24, mbNET HW1, and mbSPIDER products.\n\nCVE-2024-45275 affects only the mbNET HW1 product.",
"title": "Summary"
},
{
"category": "description",
"text": "CVE-2024-45272 allows brute-force attacks against remote credentials with a high probability of success.\n\nCVE-2024-45273 allows undetectable tampering and manipulation of encrypted configuration files.\n\nCVE-2024-45275 allow remote code execution with system privileges, resulting in full compromise of the device\n",
"title": "Impact"
},
{
"category": "description",
"text": "Update mbNET/mbNET.rokey to the version 8.2.1\\\nUpdate mbCONNECT24, mymbCONNECT24 to the version 2.16.3\\\n**Note**: mbNET HW1 and mbSPIDER are EOL and will not receive any further updates.",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "security-team@mbconnectline.de",
"name": "MB connect line GmbH",
"namespace": "https://mbconnectline.com"
},
"references": [
{
"category": "external",
"summary": "Product security incident reports",
"url": "https://mbconnectline.com/security-advice"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for MB connect line",
"url": "https://certvde.com/en/advisories/vendor/mbconnectline"
},
{
"category": "self",
"summary": "VDE-2024-068: MB connect line: Multiple Vulnerabilities in MB connect line Products - HTML",
"url": "https://certvde.com/en/advisories/VDE-2024-068"
},
{
"category": "self",
"summary": "Security Incident Management SIM#2024-04 - PDF",
"url": "https://advisories.mbconnectline.com/pdf/SIM2024-04.pdf"
},
{
"category": "self",
"summary": "VDE-2024-068: MB connect line: Multiple Vulnerabilities in MB connect line Products - CSAF",
"url": "https://mbconnectline.csaf-tp.certvde.com/.well-known/csaf/white/2024/vde-2024-068.json"
}
],
"title": "MB connect line: Multiple Vulnerabilities in MB connect line Products",
"tracking": {
"aliases": [
"VDE-2024-068",
"SIM#2024-04"
],
"current_release_date": "2026-03-06T08:00:00.000Z",
"generator": {
"date": "2026-03-06T07:45:42.564Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.43"
}
},
"id": "VDE-2024-068",
"initial_release_date": "2024-10-15T08:00:00.000Z",
"revision_history": [
{
"date": "2024-10-15T08:00:00.000Z",
"number": "1.0.0",
"summary": "Initial revision."
},
{
"date": "2024-11-06T11:27:01.000Z",
"number": "2.0.0",
"summary": "Fix: correct certvde domain, added self-reference"
},
{
"date": "2025-05-14T12:28:19.000Z",
"number": "3.0.0",
"summary": "Fix: version space"
},
{
"date": "2026-03-06T08:00:00.000Z",
"number": "4.0.0",
"summary": "Added CVE-2024-45275"
}
],
"status": "final",
"version": "4.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_family",
"name": "mbCONNECT24",
"product": {
"name": "MB connect line mbCONNECT24",
"product_id": "CSAFPID-11001",
"product_identification_helper": {
"cpe": "cpe:2.3:h:mb_connect_line:mbCONNECT24:*:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "mbNET HW1",
"product": {
"name": "MB connect line mbNET HW1",
"product_id": "CSAFPID-11002",
"product_identification_helper": {
"model_numbers": [
"MDH 810 (HW01)",
"MDH 811 (HW01)",
"MDH 814 (HW01)",
"MDH 815 (HW01)",
"DH 816 (HW01)",
"DH 819 (HW01)",
"MDH 830 (HW01)",
"MDH 831 (HW01)",
"MDH 834 (HW01) ",
"MDH 835 (HW01)",
"DH 841 (HW01)",
"MDH 849 (HW01)",
"DH 850 EU (HW01)",
"MDH 850 AT\u0026T (HW01)",
"DH 855 EU (HW01)",
"MDH 855 AT\u0026T (HW01)",
"MDH 858 EU (HW01)",
"MDH 858 AT\u0026T (HW01)",
"MDH 859 EU (HW01)",
"MDH 859 AT\u0026T (HW01)"
]
}
}
},
{
"category": "product_name",
"name": "mbNET/mbNET.rokey",
"product": {
"name": "MB connect line mbNET/mbNET.rokey",
"product_id": "CSAFPID-11003",
"product_identification_helper": {
"model_numbers": [
"MDH 811",
"MDH 816",
"MDH 831",
"MDH 835",
"MDH 841",
"MDH 850 EU",
"MDH 850 US",
"MDH 855 EU",
"MDH 855 US",
"MDH 859 EU",
"MDH 859 US",
"MDH 871",
"MDH 876",
"RKH 210",
"RKH 216",
"RKH 235",
"RKH 259 EU",
"RKH 259 US"
]
}
}
},
{
"category": "product_name",
"name": "mbSPIDER",
"product": {
"name": "MB connect line mbSPIDER",
"product_id": "CSAFPID-11005",
"product_identification_helper": {
"model_numbers": [
"MDH 900",
"MDH 901",
"MDH 905",
"MDH 906",
"MDH 907",
"MDH 908",
"MDH 910",
"MDH 911",
"MDH 915",
"MDH 916",
"MDH 918"
]
}
}
},
{
"category": "product_name",
"name": "mymbCONNECT24",
"product": {
"name": "MB connect line mymbCONNECT24",
"product_id": "CSAFPID-11006",
"product_identification_helper": {
"cpe": "cpe:2.3:h:mb_connect_line:mymbCONNECT24:*:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:semver/\u003c=2.16.2",
"product": {
"name": "Firmware \u003c=2.16.2",
"product_id": "CSAFPID-21001"
}
},
{
"category": "product_version_range",
"name": "vers:semver/\u003c=5.1.11",
"product": {
"name": "Firmware \u003c=5.1.11",
"product_id": "CSAFPID-21002"
}
},
{
"category": "product_version_range",
"name": "vers:semver/\u003c=8.2.0",
"product": {
"name": "Firmware \u003c=8.2.0",
"product_id": "CSAFPID-21003"
}
},
{
"category": "product_version_range",
"name": "vers:semver/\u003c=2.6.5",
"product": {
"name": "Firmware \u003c=2.6.5",
"product_id": "CSAFPID-21005"
}
},
{
"category": "product_version",
"name": "8.2.1",
"product": {
"name": "Firmware 8.2.1",
"product_id": "CSAFPID-22002",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:8.2.1:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "2.16.3",
"product": {
"name": "Firmware 2.16.3",
"product_id": "CSAFPID-22003",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:2.16.3:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "2.16.2",
"product": {
"name": "Firmware 2.16.2",
"product_id": "CSAFPID-21004",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:2.16.2:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "5.1.11",
"product": {
"name": "Firmware 5.1.11",
"product_id": "CSAFPID-21006",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:5.1.11:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "8.2.0",
"product": {
"name": "Firmware 8.2.0",
"product_id": "CSAFPID-21007",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:8.2.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "2.6.5",
"product": {
"name": "Firmware 2.6.5",
"product_id": "CSAFPID-21008",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:2.6.5:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "MB connect line"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31006"
],
"summary": "Affected products."
},
{
"group_id": "CSAFGID-0002",
"product_ids": [
"CSAFPID-32002",
"CSAFPID-32003",
"CSAFPID-32004"
],
"summary": "Fixed products."
},
{
"group_id": "CSAFGID-0003",
"product_ids": [
"CSAFPID-33002",
"CSAFPID-33003",
"CSAFPID-33001",
"CSAFPID-33004",
"CSAFPID-33005"
],
"summary": "Last affected products."
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.16.2 installed on MB connect line mbCONNECT24",
"product_id": "CSAFPID-31001"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.16.2 installed on MB connect line mymbCONNECT24",
"product_id": "CSAFPID-31002"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=5.1.11 installed on MB connect line mbNET HW1",
"product_id": "CSAFPID-31003"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.2.0 installed on MB connect line mbNET/mbNET.rokey",
"product_id": "CSAFPID-31004"
},
"product_reference": "CSAFPID-21003",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.6.5 installed on MB connect line mbSPIDER",
"product_id": "CSAFPID-31006"
},
"product_reference": "CSAFPID-21005",
"relates_to_product_reference": "CSAFPID-11005"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.2.1 installed on MB connect line mbNET/mbNET.rokey",
"product_id": "CSAFPID-32002",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:8.2.1:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-22002",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.16.3 installed on MB connect line mbCONNECT24",
"product_id": "CSAFPID-32003",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:2.16.3:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-22003",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.16.3 installed on MB connect line mymbCONNECT24",
"product_id": "CSAFPID-32004",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:2.16.3:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-22003",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 5.1.11 installed on MB connect line mbNET HW1",
"product_id": "CSAFPID-33001",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:5.1.11:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21006",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.16.2 installed on MB connect line mbCONNECT24",
"product_id": "CSAFPID-33002",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:2.16.2:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.16.2 installed on MB connect line mymbCONNECT24",
"product_id": "CSAFPID-33003",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:2.16.2:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.6.5 installed on MB connect line mbSPIDER",
"product_id": "CSAFPID-33004",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:2.6.5:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21008",
"relates_to_product_reference": "CSAFPID-11005"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.2.0 installed on MB connect line mbNET/mbNET.rokey",
"product_id": "CSAFPID-33005",
"product_identification_helper": {
"cpe": "cpe:2.3:o:mb_connect_line:firmware:8.2.0:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21007",
"relates_to_product_reference": "CSAFPID-11003"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45275",
"cwe": {
"id": "CWE-798",
"name": "Use of Hard-coded Credentials"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31003"
],
"last_affected": [
"CSAFPID-33001"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "**Note**: mbNET HW1 and mbSPIDER are EOL and will not receive any further updates.",
"group_ids": [
"CSAFGID-0001",
"CSAFGID-0003"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31003",
"CSAFPID-33001"
]
}
],
"title": "CVE-2024-45275"
},
{
"cve": "CVE-2024-45273",
"cwe": {
"id": "CWE-261",
"name": "Weak Encoding for Password"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32002",
"CSAFPID-32003",
"CSAFPID-32004"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-33002",
"CSAFPID-33003",
"CSAFPID-33001",
"CSAFPID-33004",
"CSAFPID-33005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update mbNET/mbNET.rokey to the version 8.2.1\\\nUpdate mbCONNECT24, mymbCONNECT24 to the version 2.16.3\\\n**Note**: mbNET HW1 and mbSPIDER are EOL and will not receive any further updates.",
"group_ids": [
"CSAFGID-0001",
"CSAFGID-0003"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.4,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 8.4,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31006",
"CSAFPID-33002",
"CSAFPID-33003",
"CSAFPID-33001",
"CSAFPID-33004",
"CSAFPID-33005"
]
}
],
"title": "CVE-2024-45273"
},
{
"cve": "CVE-2024-45272",
"cwe": {
"id": "CWE-1391",
"name": "Use of Weak Credentials"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with a high chance of success, resulting in connection lost.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32003",
"CSAFPID-32004"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002"
],
"last_affected": [
"CSAFPID-33002",
"CSAFPID-33003"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update mbCONNECT24, mymbCONNECT24 to the version 2.16.3",
"group_ids": [
"CSAFGID-0001",
"CSAFGID-0003"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-33002",
"CSAFPID-33003"
]
}
],
"title": "CVE-2024-45272"
}
]
}
VDE-2024-066
Vulnerability from csaf_helmholzgmbhcokg - Published: 2024-10-15 08:00 - Updated: 2025-08-27 10:00Summary
Helmholz: Multiple Vulnerabilities in Helmholz REX100 Product
Notes
Summary: Multiple vulnerabilities have been discovered in REX100 allowing for RCE or unauthorized file access.
Impact: CVE-2024-45271, CVE-2024-45274 and CVE-2024-45275 allow remote code execution with system privileges, resulting in full compromise of the device.
CVE-2024-45273 allows undetectable tampering and manipulation of encrypted configuration files.
CVE-2024-45276 allows unauthenticated access to potential sensitive files.
Remediation: Update REX100 to the version 2.3.1
An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
An unauthenticated local attacker can gain admin privileges by deploying a config file due to improper input validation.
8.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.
8.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to missing authentication.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31005 | — |
Vendor Fix
|
References
4 references
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
},
{
"names": [
"Moritz Abrell"
],
"organization": "SySS GmbH",
"summary": "reporting",
"urls": [
"https://www.syss.de"
]
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "Multiple vulnerabilities have been discovered in REX100 allowing for RCE or unauthorized file access.",
"title": "Summary"
},
{
"category": "description",
"text": "CVE-2024-45271, CVE-2024-45274 and CVE-2024-45275 allow remote code execution with system privileges, resulting in full compromise of the device.\n\nCVE-2024-45273 allows undetectable tampering and manipulation of encrypted configuration files.\n\nCVE-2024-45276 allows unauthenticated access to potential sensitive files.",
"title": "Impact"
},
{
"category": "description",
"text": "Update REX100 to the version 2.3.1",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@helmholz.de",
"name": "Helmholz GmbH \u0026 Co. KG",
"namespace": "https://www.helmholz.de"
},
"references": [
{
"category": "external",
"summary": "Product security incident reports",
"url": "https://helmholz.com/security-advice"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for Helmholz",
"url": "https://certvde.com/en/advisories/vendor/helmholz"
},
{
"category": "self",
"summary": "VDE-2024-066: Helmholz: Multiple Vulnerabilities in Helmholz REX100 Product - HTML",
"url": "https://certvde.com/en/advisories/VDE-2024-066"
},
{
"category": "self",
"summary": "VDE-2024-066: Helmholz: Multiple Vulnerabilities in Helmholz REX100 Product - CSAF",
"url": "https://helmholz.csaf-tp.certvde.com/.well-known/csaf/white/2024/vde-2024-066.json"
}
],
"title": "Helmholz: Multiple Vulnerabilities in Helmholz REX100 Product",
"tracking": {
"aliases": [
"VDE-2024-066"
],
"current_release_date": "2025-08-27T10:00:00.000Z",
"generator": {
"date": "2025-08-28T07:38:09.433Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.34"
}
},
"id": "VDE-2024-066",
"initial_release_date": "2024-10-15T08:00:00.000Z",
"revision_history": [
{
"date": "2024-10-15T08:00:00.000Z",
"number": "1.0.0",
"summary": "Initial revision."
},
{
"date": "2024-11-06T11:27:01.000Z",
"number": "1.0.1",
"summary": "Fix: correct certvde domain, added self-reference"
},
{
"date": "2025-03-12T13:30:00.000Z",
"number": "1.0.2",
"summary": "removed spaces around version operators"
},
{
"date": "2025-08-27T10:00:00.000Z",
"number": "1.1.2",
"summary": "Update: CWE from CVE-2024-45271, Revision History"
}
],
"status": "final",
"version": "1.1.2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "REX100",
"product": {
"name": "Helmholz REX100",
"product_id": "CSAFPID-11004"
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.2.13",
"product": {
"name": "Firmware \u003c=2.2.13",
"product_id": "CSAFPID-21004"
}
},
{
"category": "product_version",
"name": "2.3.1",
"product": {
"name": "Firmware 2.3.1",
"product_id": "CSAFPID-22001"
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "Helmholz"
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.2.13 installed on Helmholz REX100",
"product_id": "CSAFPID-31005"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11004"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.3.1 installed on Helmholz REX100",
"product_id": "CSAFPID-32001"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11004"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45274",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update REX100 to the version 2.3.1",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45274"
},
{
"cve": "CVE-2024-45275",
"cwe": {
"id": "CWE-798",
"name": "Use of Hard-coded Credentials"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update REX100 to the version 2.3.1",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45275"
},
{
"cve": "CVE-2024-45271",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated local attacker can gain admin privileges by deploying a config file due to improper input validation.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update REX100 to the version 2.3.1",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.4,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 8.4,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45271"
},
{
"cve": "CVE-2024-45273",
"cwe": {
"id": "CWE-261",
"name": "Weak Encoding for Password"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update REX100 to the version 2.3.1",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.4,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 8.4,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45273"
},
{
"cve": "CVE-2024-45276",
"cwe": {
"id": "CWE-552",
"name": "Files or Directories Accessible to External Parties"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated remote attacker can get read access to files in the \"/tmp\" directory due to missing authentication.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001"
],
"known_affected": [
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update REX100 to the version 2.3.1",
"product_ids": [
"CSAFPID-31005"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-31005"
]
}
],
"title": "CVE-2024-45276"
}
]
}
VDE-2024-069
Vulnerability from csaf_helmholzgmbhcokg - Published: 2024-10-15 08:00 - Updated: 2026-03-06 08:00Summary
Helmholz: Multiple Vulnerabilities in Helmholz products
Notes
Summary: Multiple vulnerabilities have been discovered in Helmholz products that could allow RCE or unauthorized file access.
CVE-2024-45272 affects the myREX24V2 and myREX24V2.virtual products.
CVE-2024-45273 affects the REX 200/REX 250, myREX24V2, myREX24V2.virtual products.
CVE-2024-45275 affects only the REX 200 / REX 250 products.
Impact: CVE-2024-45272 allows brute-force attacks against remote credentials with a high probability of success.
CVE-2024-45273 allows undetectable tampering and manipulation of encrypted configuration files.
CVE-2024-45275 allow remote code execution with system privileges, resulting in full compromise of the device
Remediation: Update REX 200 /REX 250 to the version 8.2.1\
Update myREX24V2, myREX24V2.virtual to the version 2.16.3\
**Note**: REX 300 is EOL and will not receive any further updates.
Disclaimer: Helmholz shall not be held responsible for any indirect, incidental, special, or consequential damages arising from the distribution or use of this document, or from any actions taken in reliance upon its contents. The information contained herein is provided by Helmholz in good faith and free of charge. To the extent permitted under applicable law, such information does not constitute any representation, warranty, guarantee, contractual commitment, or legal obligation on the part of Helmholz. Users remain solely responsible for evaluating the suitability and impact of the information on their specific systems or installations prior to implementation. If any adverse effects are identified, the information must not be applied.
The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.
9.8 (Critical)
Vendor Fix
**Note**: REX 300 is EOL and will not receive any further updates.
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31003 | — |
Last affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-33001 | — |
An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.
8.4 (High)
Vendor Fix
Update REX 200 / REX 250 to the version 8.2.1\
Update myREX24V2, myREX24V2.virtual to the version 2.16.3\
**Note**: REX 300 is EOL and will not receive any further updates.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — | ||
| Unresolved product id: CSAFPID-32004 | — |
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — |
Last affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-33002 | — | ||
| Unresolved product id: CSAFPID-33003 | — | ||
| Unresolved product id: CSAFPID-33001 | — | ||
| Unresolved product id: CSAFPID-33005 | — |
An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with a high chance of success, resulting in connection lost.
7.5 (High)
Vendor Fix
Update myREX24V2, myREX24V2.virtual to the version 2.16.3
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32003 | — | ||
| Unresolved product id: CSAFPID-32004 | — |
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — |
Last affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-33002 | — | ||
| Unresolved product id: CSAFPID-33003 | — |
References
3 references
Acknowledgments
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
},
{
"names": [
"Moritz Abrell"
],
"organization": "SySS GmbH",
"summary": "reporting",
"urls": [
"https://www.syss.de"
]
},
{
"organization": "Marcel Rick-Cen",
"summary": "reporting"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "Multiple vulnerabilities have been discovered in Helmholz products that could allow RCE or unauthorized file access.\n\nCVE-2024-45272 affects the myREX24V2 and myREX24V2.virtual products.\n\nCVE-2024-45273 affects the REX 200/REX 250, myREX24V2, myREX24V2.virtual products.\n\nCVE-2024-45275 affects only the REX 200 / REX 250 products.",
"title": "Summary"
},
{
"category": "description",
"text": "CVE-2024-45272 allows brute-force attacks against remote credentials with a high probability of success.\n\nCVE-2024-45273 allows undetectable tampering and manipulation of encrypted configuration files.\n\nCVE-2024-45275 allow remote code execution with system privileges, resulting in full compromise of the device\n",
"title": "Impact"
},
{
"category": "description",
"text": "Update REX 200 /REX 250 to the version 8.2.1\\\nUpdate myREX24V2, myREX24V2.virtual to the version 2.16.3\\\n**Note**: REX 300 is EOL and will not receive any further updates.",
"title": "Remediation"
},
{
"category": "legal_disclaimer",
"text": "Helmholz shall not be held responsible for any indirect, incidental, special, or consequential damages arising from the distribution or use of this document, or from any actions taken in reliance upon its contents. The information contained herein is provided by Helmholz in good faith and free of charge. To the extent permitted under applicable law, such information does not constitute any representation, warranty, guarantee, contractual commitment, or legal obligation on the part of Helmholz. Users remain solely responsible for evaluating the suitability and impact of the information on their specific systems or installations prior to implementation. If any adverse effects are identified, the information must not be applied.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@helmholz.de",
"name": "Helmholz GmbH \u0026 Co. KG",
"namespace": "https://www.helmholz.de"
},
"references": [
{
"category": "external",
"summary": "CERT@VDE Security Advisories for Helmholz",
"url": "https://certvde.com/en/advisories/vendor/helmholz"
},
{
"category": "self",
"summary": "VDE-2024-069: Helmholz: Multiple Vulnerabilities in Helmholz products - HTML",
"url": "https://certvde.com/en/advisories/VDE-2024-069"
},
{
"category": "self",
"summary": "VDE-2024-069: Helmholz: Multiple Vulnerabilities in Helmholz products - CSAF",
"url": "https://helmholz.csaf-tp.certvde.com/.well-known/csaf/white/2024/vde-2024-069.json"
}
],
"title": "Helmholz: Multiple Vulnerabilities in Helmholz products",
"tracking": {
"aliases": [
"VDE-2024-069",
"SIM#2024-04"
],
"current_release_date": "2026-03-06T08:00:00.000Z",
"generator": {
"date": "2026-03-06T07:48:10.147Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.44"
}
},
"id": "VDE-2024-069",
"initial_release_date": "2024-10-15T08:00:00.000Z",
"revision_history": [
{
"date": "2024-10-15T08:00:00.000Z",
"number": "1.0.0",
"summary": "Initial revision."
},
{
"date": "2024-11-06T11:27:01.000Z",
"number": "2.0.0",
"summary": "Fix: correct certvde domain, added self-reference"
},
{
"date": "2025-05-14T12:28:19.000Z",
"number": "3.0.0",
"summary": "Fix: version space"
},
{
"date": "2026-03-06T08:00:00.000Z",
"number": "4.0.0",
"summary": "Added CVE-2024-45275"
}
],
"status": "final",
"version": "4.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_family",
"name": "myREX24V2",
"product": {
"name": "Helmholz myREX24V2",
"product_id": "CSAFPID-11001",
"product_identification_helper": {
"cpe": "cpe:2.3:h:helmholz:myREX24V2:*:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "REX 300",
"product": {
"name": "Helmholz REX 300",
"product_id": "CSAFPID-11002",
"product_identification_helper": {
"model_numbers": [
"700-871-EDG01",
"700-871-EDG02",
"700-871-ISD01",
"700-871-ISD02",
"700-871-MDM01",
"700-871-MDM02",
"700-871-UMT02",
"700-872-EDG01",
"700-872-EDG02",
"700-872-ISD01",
"700-872-ISD02",
"700-872-MDM01",
"700-872-MDM02",
"700-872-UMT02"
]
}
}
},
{
"category": "product_name",
"name": "REX 200/REX 250",
"product": {
"name": "Helmholz REX 200/ REX 250",
"product_id": "CSAFPID-11003",
"product_identification_helper": {
"model_numbers": [
"700-877-WAN01",
"700-877-WAN02",
"700-877-LTE01",
"700-877-LTE02",
"700-877-LTE21",
"700-877-WIF01",
"700-877-WIF02",
"700-877-UMT01",
"700-878-WAN01",
"700-878-WAN02",
"700-878-LTE01",
"700-878-LTE02",
"700-878-LTE11",
"700-878-WIF01",
"700-878-WIF02",
"700-878-UMT01"
]
}
}
},
{
"category": "product_name",
"name": "myREX24V2.virtual",
"product": {
"name": "Helmholz myREX24V2.virtual",
"product_id": "CSAFPID-11006",
"product_identification_helper": {
"cpe": "cpe:2.3:h:helmholz:myREX24V2virtual:*:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:semver/\u003c=2.16.2",
"product": {
"name": "Firmware \u003c=2.16.2",
"product_id": "CSAFPID-21001"
}
},
{
"category": "product_version_range",
"name": "vers:semver/\u003c=5.1.11",
"product": {
"name": "Firmware \u003c=5.1.11",
"product_id": "CSAFPID-21002"
}
},
{
"category": "product_version_range",
"name": "vers:semver/\u003c=8.2.0",
"product": {
"name": "Firmware \u003c=8.2.0",
"product_id": "CSAFPID-21003"
}
},
{
"category": "product_version",
"name": "8.2.1",
"product": {
"name": "Firmware 8.2.1",
"product_id": "CSAFPID-22002",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:8.2.1:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "2.16.3",
"product": {
"name": "Firmware 2.16.3",
"product_id": "CSAFPID-22003",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:2.16.3:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "2.16.2",
"product": {
"name": "Firmware 2.16.2",
"product_id": "CSAFPID-21004",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:2.16.2:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "5.1.11",
"product": {
"name": "Firmware 5.1.11",
"product_id": "CSAFPID-21006",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:5.1.11:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "8.2.0",
"product": {
"name": "Firmware 8.2.0",
"product_id": "CSAFPID-21007",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:8.2.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "Helmholz GmbH \u0026 CO. KG"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004"
],
"summary": "Affected products."
},
{
"group_id": "CSAFGID-0002",
"product_ids": [
"CSAFPID-32002",
"CSAFPID-32003",
"CSAFPID-32004"
],
"summary": "Fixed products."
},
{
"group_id": "CSAFGID-0003",
"product_ids": [
"CSAFPID-33002",
"CSAFPID-33003",
"CSAFPID-33001",
"CSAFPID-33005"
],
"summary": "Last affected products."
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.16.2 installed on Helmholz myREX24V2",
"product_id": "CSAFPID-31001"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.16.2 installed on Helmholz myREX24V2.virtual",
"product_id": "CSAFPID-31002"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=5.1.11 installed on Helmholz REX 300",
"product_id": "CSAFPID-31003"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.2.0 installed on Helmholz REX 200 / REX 250",
"product_id": "CSAFPID-31004"
},
"product_reference": "CSAFPID-21003",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.2.1 installed on Helmholz REx 200 / REX 250",
"product_id": "CSAFPID-32002",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:8.2.1:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-22002",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.16.3 installed on Helmholz myREX24V2",
"product_id": "CSAFPID-32003",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:2.16.3:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-22003",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.16.3 installed on Helmholz myREX24V2.virtual",
"product_id": "CSAFPID-32004",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:2.16.3:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-22003",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 5.1.11 installed on Helmholz REX 300",
"product_id": "CSAFPID-33001",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:5.1.11:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21006",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.16.2 installed on Helmholz myREX24V2",
"product_id": "CSAFPID-33002",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:2.16.2:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 2.16.2 installed on Helmholz myREX24V2.virtual",
"product_id": "CSAFPID-33003",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:2.16.2:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.2.0 installed on Helmholz REX 200 / REX 250",
"product_id": "CSAFPID-33005",
"product_identification_helper": {
"cpe": "cpe:2.3:o:helmholz:firmware:8.2.0:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21007",
"relates_to_product_reference": "CSAFPID-11003"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45275",
"cwe": {
"id": "CWE-798",
"name": "Use of Hard-coded Credentials"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31003"
],
"last_affected": [
"CSAFPID-33001"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "**Note**: REX 300 is EOL and will not receive any further updates.",
"group_ids": [
"CSAFGID-0001",
"CSAFGID-0003"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31003",
"CSAFPID-33001"
]
}
],
"title": "CVE-2024-45275"
},
{
"cve": "CVE-2024-45273",
"cwe": {
"id": "CWE-261",
"name": "Weak Encoding for Password"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32002",
"CSAFPID-32003",
"CSAFPID-32004"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004"
],
"last_affected": [
"CSAFPID-33002",
"CSAFPID-33003",
"CSAFPID-33001",
"CSAFPID-33005"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update REX 200 / REX 250 to the version 8.2.1\\\nUpdate myREX24V2, myREX24V2.virtual to the version 2.16.3\\\n**Note**: REX 300 is EOL and will not receive any further updates.",
"group_ids": [
"CSAFGID-0001",
"CSAFGID-0003"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.4,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 8.4,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-33002",
"CSAFPID-33003",
"CSAFPID-33001",
"CSAFPID-33005"
]
}
],
"title": "CVE-2024-45273"
},
{
"cve": "CVE-2024-45272",
"cwe": {
"id": "CWE-1391",
"name": "Use of Weak Credentials"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with a high chance of success, resulting in connection lost.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32003",
"CSAFPID-32004"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002"
],
"last_affected": [
"CSAFPID-33002",
"CSAFPID-33003"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update myREX24V2, myREX24V2.virtual to the version 2.16.3",
"group_ids": [
"CSAFGID-0001",
"CSAFGID-0003"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-33002",
"CSAFPID-33003"
]
}
],
"title": "CVE-2024-45272"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…