CVE-2024-45276

An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to missing authentication.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:mbconnectline:mbnet.mini_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mbconnectline:mbnet.mini:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:helmholz:rex_100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:helmholz:rex_100:-:*:*:*:*:*:*:*

History

17 Oct 2024, 17:39

Type Values Removed Values Added
References () https://cert.vde.com/en/advisories/VDE-2024-056 - () https://cert.vde.com/en/advisories/VDE-2024-056 - Third Party Advisory
References () https://cert.vde.com/en/advisories/VDE-2024-066 - () https://cert.vde.com/en/advisories/VDE-2024-066 - Third Party Advisory
CPE cpe:2.3:o:mbconnectline:mbnet.mini_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:helmholz:rex_100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mbconnectline:mbnet.mini:-:*:*:*:*:*:*:*
cpe:2.3:h:helmholz:rex_100:-:*:*:*:*:*:*:*
First Time Mbconnectline
Mbconnectline mbnet.mini Firmware
Helmholz
Helmholz rex 100
Helmholz rex 100 Firmware
Mbconnectline mbnet.mini
CWE CWE-306

15 Oct 2024, 12:57

Type Values Removed Values Added
Summary
  • (es) Un atacante remoto no autenticado puede obtener acceso de lectura a los archivos en el directorio "/tmp" debido a la falta de autenticación.

15 Oct 2024, 11:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-15 11:15

Updated : 2024-10-17 17:39


NVD link : CVE-2024-45276

Mitre link : CVE-2024-45276

CVE.ORG link : CVE-2024-45276


JSON object : View

Products Affected

helmholz

  • rex_100_firmware
  • rex_100

mbconnectline

  • mbnet.mini
  • mbnet.mini_firmware
CWE
CWE-306

Missing Authentication for Critical Function

CWE-552

Files or Directories Accessible to External Parties