CVE-2024-45271

MB connect line/Helmholz: Remote code execution due to improper input validation

Severity Score

8.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track*

*SSVC

Descriptions

An unauthenticated local attacker can gain admin privileges by deploying a config file due to improper input validation.

Un atacante local no autenticado puede obtener privilegios de administrador al implementar un archivo de configuración debido a una validación de entrada incorrecta.

*Credits: Moritz Abrell, SySS GmbH

CVSS Scores

CERT VDEv3.1 8.4

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track*

Exploitation

None

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2024-08-26 CVE Reserved
2024-10-15 CVE Published
2024-10-16 CVE Updated
2024-10-22 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation
CWE-116: Improper Encoding or Escaping of Output

CAPEC

References (2)

URL	Tag	Source
https://cert.vde.com/en/advisories/VDE-2024-056
https://cert.vde.com/en/advisories/VDE-2024-066

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
MB Connect Line Search vendor "MB Connect Line"		MbNET.mini Search vendor "MB Connect Line" for product "MbNET.mini"				>= 0.0.0 <= 2.2.13 Search vendor "MB Connect Line" for product "MbNET.mini" and version " >= 0.0.0 <= 2.2.13"		en		Affected
Helmholz Search vendor "Helmholz"		REX100 Search vendor "Helmholz" for product "REX100"				>= 0.0.0 <= 2.2.13 Search vendor "Helmholz" for product "REX100" and version " >= 0.0.0 <= 2.2.13"		en		Affected