Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3
CVE-2020-35566
- EPSS 0.24%
- Published 16.02.2021 16:15:13
- Last modified 21.11.2024 05:27:35
An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. An attacker can read arbitrary JSON files via Local File Inclusion.
4.3
CVE-2020-35568
- EPSS 0.33%
- Published 16.02.2021 16:15:13
- Last modified 21.11.2024 05:27:35
An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. An incomplete filter applied to a database response allows an authenticated attacker to gain non-public in...
5.3
CVE-2020-35570
- EPSS 0.8%
- Published 16.02.2021 16:15:13
- Last modified 21.11.2024 05:27:36
An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual through 2.11.2. An unauthenticated attacker is able to access files (that should have been restricted) via forceful browsing.