How severe is CVE-2021-34575?

CVE-2021-34575 has a CVSS v3 score of 7.5 (HIGH).

CVE-2021-34575

Name: mymbconnect24
Author: mbconnectline

7.5HIGH

In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by checking what kind of response the server sends.

Veröffentlicht: 8/2/2021Aktualisiert: 11/21/2024

Beschreibung

In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by checking what kind of response the server sends.

KI-AnalyseKI-gestützt

Betroffene Produkte

mbconnectlinembconnect24

mbconnectlinemymbconnect24

Referenzen

https://cert.vde.com/de-de/advisories/vde-2021-030
Third Party Advisory
https://cert.vde.com/de-de/advisories/vde-2021-030
Third Party Advisory