CVE-2020-12527 - CERT CVE
ID CVE-2020-12527
Sažetak An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. Improper access validation allows a logged in user to shutdown or reboot devices in his account without having corresponding permissions.
Reference
CVSS
Base: 6.8
Impact: 6.9
Exploitability:8.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW SINGLE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE COMPLETE
CVSS vektor AV:N/AC:L/Au:S/C:N/I:N/A:C
Zadnje važnije ažuriranje 10-02-2023 - 18:03
Objavljeno 02-03-2021 - 22:15