How severe is CVE-2021-34575?

CVE-2021-34575 has a CVSS v3 score of 7.5 (HIGH).

CVE-2021-34575

Name: mymbconnect24
Author: mbconnectline

7.5HIGH

In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by checking what kind of response the server sends.

Publicado: 8/2/2021Actualizado: 11/21/2024

Descripción

In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by checking what kind of response the server sends.

Análisis IAImpulsado por IA

Productos Afectados

mbconnectlinembconnect24

mbconnectlinemymbconnect24

Referencias

https://cert.vde.com/de-de/advisories/vde-2021-030
Third Party Advisory
https://cert.vde.com/de-de/advisories/vde-2021-030
Third Party Advisory