← back
CVE-2020-35561

SSRF in variuos products of MB connect line and Helmholz

CVSS 5.3 MEDIUMEPSS 1.2%
An issue was discovered MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. There is an SSRF in the HA module allowing an unauthenticated attacker to scan for open ports.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://cert.vde.com/en/advisories/VDE-2021-003https://cert.vde.com/en/advisories/VDE-2022-039https://mbconnectline.com/security-advice/