Vulnerabilities > Mbconnectline > Mbconnect24
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-02 | CVE-2020-12527 | Improper Privilege Management vulnerability in multiple products An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. | 6.5 |
| 2021-02-16 | CVE-2020-35570 | Forced Browsing vulnerability in multiple products An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual through 2.11.2. | 5.3 |
| 2021-02-16 | CVE-2020-35569 | Cross-site Scripting vulnerability in Mbconnectline Mbconnect24 and Mymbconnect24 An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. | 4.3 |
| 2021-02-16 | CVE-2020-35568 | Information Exposure vulnerability in multiple products An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. | 4.3 |
| 2021-02-16 | CVE-2020-35567 | Use of Hard-coded Credentials vulnerability in Mbconnectline Mbconnect24 and Mymbconnect24 An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. | 4.6 |
| 2021-02-16 | CVE-2020-35566 | Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. | 5.3 |
| 2021-02-16 | CVE-2020-35565 | Improper Restriction of Excessive Authentication Attempts vulnerability in Mbconnectline Mbconnect24 and Mymbconnect24 An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. | 5.0 |
| 2021-02-16 | CVE-2020-35564 | Injection vulnerability in Mbconnectline Mbconnect24 and Mymbconnect24 An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. | 5.0 |
| 2021-02-16 | CVE-2020-35563 | Cross-site Scripting vulnerability in Mbconnectline Mbconnect24 and Mymbconnect24 An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. | 3.5 |
| 2021-02-16 | CVE-2020-35561 | Server-Side Request Forgery (SSRF) vulnerability in multiple products An issue was discovered MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. | 5.3 |