Headline
CVE-2020-35570: Security Advice | MB connect line GmbH
An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual through 2.11.2. An unauthenticated attacker is able to access files (that should have been restricted) via forceful browsing.
Product Security incident reports
Already during the development process we consider and test the highest standards of cybersecurity, as our products and services are designed to meet the highest quality requirements. To ensure that this is maintained throughout the entire life cycle, reports on possible weaknesses are taken very seriously and a responsible approach is taken to dealing with them.
Security Advisories
Do you have security advice or questions regarding the security of our products?
Please contact us by e-mail:
Would you like to encrypt your message?
Please use this PGP public key.
The fingerprint of the key is:
FE868705E1795B59CFD583A7B3BB1EA622CFC38F
Find your personal contact person in your area.
Are you looking for an all-in-one solution? Try our web-based remote access portal today.
u
Questions? We can help you. For direct support, you can also call us.
Subscribe here to get updates on IoT and remote access solutions, products and features and get the latest cybersecurity updates.
You have Questions?
Write us!
Related news
A remote, unauthenticated attacker can enumerate valid users by sending specific requests to the webservice of MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2.