VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Helmholz
> High
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-10-15
CVE-2024-45271
An unauthenticated local attacker can gain admin privileges by deploying a config file due to improper input validation.
local
low complexity
mbconnectline
helmholz
7.8
7.8
2024-10-15
CVE-2024-45272
An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with a high chance of success, resulting in connection lost.
network
low complexity
helmholz
mbconnectline
7.5
7.5
2024-10-15
CVE-2024-45273
Inadequate Encryption Strength vulnerability in multiple products
An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.
local
low complexity
mbconnectline
helmholz
CWE-326
7.8
7.8
2024-10-15
CVE-2024-45276
Missing Authentication for Critical Function vulnerability in multiple products
An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to missing authentication.
network
low complexity
mbconnectline
helmholz
CWE-306
7.5
7.5
2021-02-16
CVE-2020-35558
Server-Side Request Forgery (SSRF) vulnerability in multiple products
An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual through 2.11.2.
network
low complexity
mbconnectline
helmholz
CWE-918
7.5
7.5