How severe is CVE-2021-34575?

CVE-2021-34575 has a CVSS v3 score of 7.5 (HIGH).

CVE-2021-34575

Name: mymbconnect24
Author: mbconnectline

7.5HIGH

In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by checking what kind of response the server sends.

Published: 8/2/2021Updated: 11/21/2024

Description

In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by checking what kind of response the server sends.

AI AnalysisPowered by AI

Affected Products

mbconnectlinembconnect24

mbconnectlinemymbconnect24

References

https://cert.vde.com/de-de/advisories/vde-2021-030
Third Party Advisory
https://cert.vde.com/de-de/advisories/vde-2021-030
Third Party Advisory