| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-33617 | MB connect line mbCONNECT24 vulnerable to an unauthenticated information disclosure in the data24 Endpoint | MB connect line | mbCONNECT24 | Medium | 5.3 | 2026-04-02 09:00:11 | Deep Dive |
| CVE-2026-33616 | MB connect line mbCONNECT24 vulnerable to an unauthenticated SQL injection in the mb24api Endpoint | MB connect line | mbCONNECT24 | High | 7.5 | 2026-04-02 08:59:56 | Deep Dive |
| CVE-2026-33615 | MB connect line mbCONNECT24 vulnerable to an unauthenticated SQL injection in the setinfo Endpoint | MB connect line | mbCONNECT24 | Critical | 9.1 | 2026-04-02 08:59:49 | Deep Dive |
| CVE-2026-33614 | MB connect line mbCONNECT24 vulnerable to an unauthenticated SQL injection in the getinfo endpoint | MB connect line | mbCONNECT24 | High | 7.5 | 2026-04-02 08:59:41 | Deep Dive |
| CVE-2026-33613 | MB connect line mbCONNECT24 vulnerable to RCE in generateSrpArray | MB connect line | mbCONNECT24 | High | 7.2 | 2026-04-02 08:59:34 | Deep Dive |
| CVE-2026-32969 | Pre-Auth Blind SQLi in userinfo Endpoint | MB connect line | MB connect line mbCONNECT24 | High | 7.5 | 2026-03-23 11:16:22 | Deep Dive |
| CVE-2026-32968 | Unauthenticated RCE in com_mb24sysapi | MB connect line | MB connect line mbCONNECT24 | Critical | 9.8 | 2026-03-23 11:16:01 | Deep Dive |
| CVE-2025-3092 | MB connect line: Observable response discrepancy in mbCONNECT24/mymbCONNECT24 | Helmholz | myREX24 | High | 7.5 | 2025-06-24 08:14:32 | Deep Dive |
| CVE-2025-3091 | MB connect line: Authorization bypass in mbCONNECT24/mymbCONNECT24 | MB connect line | mbCONNECT24 | High | 7.5 | 2025-06-24 08:10:30 | Deep Dive |
| CVE-2025-3090 | MB connect line: Missing Authentication in mbCONNECT24/mymbCONNECT24 | MB connect line | mbCONNECT24 | High | 8.2 | 2025-06-24 08:05:16 | Deep Dive |
| CVE-2024-23943 | MB connect line: Cloud API access due to a lack of authentication for a critical function | MB connect line | mbCONNECT24 | Critical | 9.1 | 2025-03-18 11:03:49 | Deep Dive |
| CVE-2024-23942 | MB connect line: Configuration File on the client workstation is not encrypted | MB connect line | mbCONNECT24 | High | 7.1 | 2025-03-18 11:03:35 | Deep Dive |
| CVE-2024-45273 | MB connect line/Helmholz: Weak encryption of configuration file | MB connect line | mbNET.mini | High | 8.4 | 2024-10-15 10:27:52 | Deep Dive |
| CVE-2024-45272 | MB connect line/Helmholz: Generation of weak passwords vulnerability | MB connect line | mbCONNECT24 | High | 7.5 | 2024-10-15 10:27:33 | Deep Dive |
| CVE-2023-4834 | MB connect line mbCONNECT24和mymbCONNECT24 安全漏洞 | Red Lion Europe | mbCONNECT24 | Medium | 4.3 | 2023-10-16 08:40:13 | Deep Dive |
| CVE-2023-1779 | Helmholz and MB Connect Line: Account takeover via password reset in multiple products | MB Connect Line | mbCONNECT24 | Medium | 4.3 | 2023-06-06 10:07:35 | Deep Dive |
| CVE-2023-0985 | Helmholz and MB Connect Line: Account takeover via password reset in multiple products | MB Connect Line | mbCONNECT24 | High | 8.8 | 2023-06-06 10:06:48 | Deep Dive |
| CVE-2022-22520 | User enumeration vulnerability in MB connect line and Helmholz products | MB connect line | mymbCONNECT24 | Medium | 5.3 | 2022-09-14 14:05:30 | Deep Dive |
| CVE-2021-34580 | Remote user enumeration in mymbCONNECT24, mbCONNECT24 <= 2.9.0 | MB connect line | mymbCONNECT24 | High | 7.5 | 2021-10-27 10:25:09 | Deep Dive |
| CVE-2021-34575 | Information Exposure in mymbCONNECT24, mbCONNECT24 <= 2.8.0 | MB connect line | mymbCONNECT24 | High | 7.5 | 2021-08-02 10:24:33 | Deep Dive |