Known Vulnerabilities for products from Mbconnectline
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Mbconnectline".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33617 json | An unauthenticated remote attacker can access a configuration file containing database credentials. This can result in a some... | Not Provided | 2026-04-02 | 2026-04-16 |
| CVE-2026-33616 json | An unauthenticated remote attacker can exploit an unauthenticated blind SQL Injection vulnerability in the mb24api endpoint d... | Not Provided | 2026-04-02 | 2026-04-16 |
| CVE-2026-33615 json | An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the setinfo endpoint due to ... | Not Provided | 2026-04-02 | 2026-04-16 |
| CVE-2026-33614 json | An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getinfo endpoint due to ... | Not Provided | 2026-04-02 | 2026-04-16 |
| CVE-2026-33613 json | Due to the improper neutralisation of special elements used in an OS command, a remote attacker can exploit an RCE vulnerabil... | Not Provided | 2026-04-02 | 2026-04-16 |
| CVE-2023-4834 json | In Red Lion Europe mbCONNECT24 and mymbCONNECT24 and Helmholz myREX24 and myREX24.virtual up to and including 2.14.2 an imp... | 4.3 - MEDIUM | 2023-10-16 | 2023-10-24 |
| CVE-2023-1779 json | Exposure of Sensitive Information to an unauthorized actor vulnerability in MB Connect Lines mbCONNECT24, mymbCONNECT24 and ... | 4.3 - MEDIUM | 2023-06-06 | 2023-06-15 |
| CVE-2023-0985 json | An Authorization Bypass vulnerability was found in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and myR... | 8.8 - HIGH | 2023-06-06 | 2023-06-15 |
| CVE-2022-22520 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2022-09-14 | 2022-10-01 |
| CVE-2021-34580 json | In mymbCONNECT24, mbCONNECT24 <= 2.9.0 an unauthenticated user can enumerate valid backend users by checking what kind of res... | 7.5 - HIGH | 2021-10-27 | 2021-11-01 |
| CVE-2021-34575 json | In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by check... | 7.5 - HIGH | 2021-08-02 | 2021-08-10 |
| CVE-2021-34574 json | In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an authenticated attacker can change the password of his a... | 4.3 - MEDIUM | 2021-08-02 | 2023-02-03 |
| CVE-2021-33527 json | In MB connect line mbDIALUP versions <= 3.9R0.0 a low privileged local attacker can send a command to the service running wit... | 9.8 - CRITICAL | 2021-08-02 | 2022-04-29 |
| CVE-2021-33526 json | In MB connect line mbDIALUP versions <= 3.9R0.0 a low privileged local attacker can send a command to the service running wit... | 7.8 - HIGH | 2021-08-02 | 2021-08-10 |
| CVE-2020-35570 json | An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. An unauthenticated attacker is able t... | 5.3 - MEDIUM | 2021-02-16 | 2023-02-16 |
| CVE-2020-35569 json | An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. There is a self XSS issue with a craf... | 6.1 - MEDIUM | 2021-02-16 | 2021-02-19 |
| CVE-2020-35568 json | An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. An incomplete filter applied to a dat... | 4.3 - MEDIUM | 2021-02-16 | 2023-02-16 |
| CVE-2020-35567 json | An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. The software uses a secure password f... | 7.8 - HIGH | 2021-02-16 | 2021-02-19 |
| CVE-2020-35566 json | An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. An attacker can read arbitrary JSON f... | 5.3 - MEDIUM | 2021-02-16 | 2023-02-16 |
| CVE-2020-35565 json | An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. The login pages bruteforce detection ... | 9.8 - CRITICAL | 2021-02-16 | 2021-02-19 |
Known software with vulnerabilities from Mbconnectline
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Mbconnectline | Mbconnect24 | - |
| Application | Mbconnectline | Mymbconnect24 | - |