Vulnerabilities (CVE)

Filtered by vendor Mbconnectline Subscribe

Filtered by product Mbconnect24

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-35565	1 Mbconnectline	2 Mbconnect24, Mymbconnect24	2021-02-19	5.0 MEDIUM	9.8 CRITICAL
An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. The login pages bruteforce detection is disabled by default.
CVE-2020-10382	1 Mbconnectline	2 Mbconnect24, Mymbconnect24	2020-10-02	7.5 HIGH	9.8 CRITICAL
An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. There is an authenticated remote code execution in the backup-scheduler.
CVE-2020-10383	1 Mbconnectline	2 Mbconnect24, Mymbconnect24	2020-10-02	7.5 HIGH	9.8 CRITICAL
An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. There is an unauthenticated remote code execution in the com_mb24sysapi module.