N/A

In Red Lion Europe mbCONNECT24 and mymbCONNECT24 and Helmholz myREX24 and myREX24.virtual up to and including 2.14.2 an improperly implemented access validation allows an authenticated, low privileged attacker to gain read access to limited, non-critical device information in his account he should not have access to.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

特权管理不恰当

MB connect line mbCONNECT24和mymbCONNECT24 安全漏洞

MB connect line mbCONNECT24和MB connect line mymbCONNECT24都是德国MB connect line公司的产品。MB connect line mbCONNECT24是一套远程服务门户网站。该产品支持远程接入、数据记录和报警等功能。MB connect line mymbCONNECT24是一款适用于虚拟环境的内部远程维护解决方案。 Red Lion Europe mbCONNECT24 2.14.2及之前版本和mymbCONNECT24 2.14.2及

N/A

N/A