Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-45272

An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with a high chance of success, resulting in connection lost.

Published

2024-10-15T11:15:11.673

Last Modified

2024-11-21T09:37:35.310

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-1391
  • Type: Primary
    NVD-CWE-Other
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application helmholz myrex24_v2_virtual_server < 2.16.3 Yes
Operating System helmholz rex_300_firmware ≤ 5.1.11 Yes
Hardware helmholz rex_300 - No
Operating System helmholz rex_200_firmware < 8.2.1 Yes
Hardware helmholz rex_200 - No
Operating System helmholz rex_250_firmware < 8.2.1 Yes
Hardware helmholz rex_250 - No
Application mbconnectline mbconnect24 < 2.16.3 Yes
Application mbconnectline mymbconnect24 < 2.16.3 Yes
Operating System mbconnectline mbspider_mdh_905_firmware ≤ 2.6.5 Yes
Hardware mbconnectline mbspider_mdh_905 - No
Operating System mbconnectline mbspider_mdh_915_firmware ≤ 2.6.5 Yes
Hardware mbconnectline mbspider_mdh_915 - No
Operating System mbconnectline mbspider_mdh_906_firmware ≤ 2.6.5 Yes
Hardware mbconnectline mbspider_mdh_906 - No
Operating System mbconnectline mbspider_mdh_916_firmware ≤ 2.6.5 Yes
Hardware mbconnectline mbspider_mdh_916 - No
Operating System mbconnectline mbnet_hw1_firmware ≤ 5.1.11 Yes
Hardware mbconnectline mbnet_hw1 - No
Operating System mbconnectline mbnet_firmware < 8.2.1 Yes
Hardware mbconnectline mbnet - No
Operating System mbconnectline mbnet.rokey_firmware < 8.2.1 Yes
Hardware mbconnectline mbnet.rokey - No
References