Sign-up

ID

VAR-202410-0404


CVE

CVE-2024-45272


TITLE

helmholz  of  myrex24 v2 virtual server  Vulnerabilities in products from multiple vendors such as

Trust: 0.8

sources: JVNDB: JVNDB-2024-010528

DESCRIPTION

An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with a high chance of success, resulting in connection lost. helmholz of myrex24 v2 virtual server Unspecified vulnerabilities exist in products from multiple vendors.Service operation interruption (DoS) It may be in a state

Trust: 1.62

sources: NVD: CVE-2024-45272 // JVNDB: JVNDB-2024-010528

AFFECTED PRODUCTS

vendor:helmholzmodel:rex 300scope:lteversion:5.1.11

Trust: 1.0

vendor:mbconnectlinemodel:mbnetscope:ltversion:8.2.1

Trust: 1.0

vendor:mbconnectlinemodel:mymbconnect24scope:ltversion:2.16.3

Trust: 1.0

vendor:helmholzmodel:rex 250scope:ltversion:8.2.1

Trust: 1.0

vendor:mbconnectlinemodel:mbspider mdh 916scope:lteversion:2.6.5

Trust: 1.0

vendor:mbconnectlinemodel:mbspider mdh 915scope:lteversion:2.6.5

Trust: 1.0

vendor:helmholzmodel:rex 200scope:ltversion:8.2.1

Trust: 1.0

vendor:mbconnectlinemodel:mbspider mdh 905scope:lteversion:2.6.5

Trust: 1.0

vendor:mbconnectlinemodel:mbspider mdh 906scope:lteversion:2.6.5

Trust: 1.0

vendor:mbconnectlinemodel:mbnet hw1scope:lteversion:5.1.11

Trust: 1.0

vendor:mbconnectlinemodel:mbnet.rokeyscope:ltversion:8.2.1

Trust: 1.0

vendor:helmholzmodel:myrex24 v2 virtual serverscope:ltversion:2.16.3

Trust: 1.0

vendor:mbconnectlinemodel:mbconnect24scope:ltversion:2.16.3

Trust: 1.0

vendor:mb connect linemodel:mbnetscope: - version: -

Trust: 0.8

vendor:mb connect linemodel:mbconnect24scope: - version: -

Trust: 0.8

vendor:mb connect linemodel:mymbconnect24scope: - version: -

Trust: 0.8

vendor:helmholzmodel:rex 300scope: - version: -

Trust: 0.8

vendor:helmholzmodel:myrex24 v2 virtual serverscope: - version: -

Trust: 0.8

vendor:helmholzmodel:rex 200scope: - version: -

Trust: 0.8

vendor:mb connect linemodel:mbspider mdh 915scope: - version: -

Trust: 0.8

vendor:mb connect linemodel:mbspider mdh 905scope: - version: -

Trust: 0.8

vendor:mb connect linemodel:mbnet hw1scope: - version: -

Trust: 0.8

vendor:mb connect linemodel:mbspider mdh 906scope: - version: -

Trust: 0.8

vendor:mb connect linemodel:mbspider mdh 916scope: - version: -

Trust: 0.8

vendor:helmholzmodel:rex 250scope: - version: -

Trust: 0.8

vendor:mb connect linemodel:mbnet.rokeyscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2024-010528 // NVD: CVE-2024-45272

CVSS

SEVERITY

CVSSV2

CVSSV3

info@cert.vde.com: CVE-2024-45272
value: HIGH

Trust: 1.0

OTHER: JVNDB-2024-010528
value: HIGH

Trust: 0.8

info@cert.vde.com: CVE-2024-45272
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.1

Trust: 1.0

OTHER: JVNDB-2024-010528
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2024-010528 // NVD: CVE-2024-45272

PROBLEMTYPE DATA

problemtype:CWE-1391

Trust: 1.0

problemtype:NVD-CWE-Other

Trust: 1.0

problemtype:Using weak credentials (CWE-1391) [ others ]

Trust: 0.8

problemtype: others (CWE-Other) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2024-010528 // NVD: CVE-2024-45272

EXTERNAL IDS

db:NVDid:CVE-2024-45272

Trust: 2.6

db:CERT@VDEid:VDE-2024-068

Trust: 1.8

db:CERT@VDEid:VDE-2024-069

Trust: 1.8

db:JVNDBid:JVNDB-2024-010528

Trust: 0.8

sources: JVNDB: JVNDB-2024-010528 // NVD: CVE-2024-45272

REFERENCES

url:https://cert.vde.com/en/advisories/vde-2024-068

Trust: 1.8

url:https://cert.vde.com/en/advisories/vde-2024-069

Trust: 1.8

url:https://nvd.nist.gov/vuln/detail/cve-2024-45272

Trust: 0.8

sources: JVNDB: JVNDB-2024-010528 // NVD: CVE-2024-45272

SOURCES

db:JVNDBid:JVNDB-2024-010528
db:NVDid:CVE-2024-45272

LAST UPDATE DATE

2024-10-23T22:43:38.088000+00:00


SOURCES UPDATE DATE

db:JVNDBid:JVNDB-2024-010528date:2024-10-18T01:37:00
db:NVDid:CVE-2024-45272date:2024-10-17T17:42:42.197

SOURCES RELEASE DATE

db:JVNDBid:JVNDB-2024-010528date:2024-10-18T00:00:00
db:NVDid:CVE-2024-45272date:2024-10-15T11:15:11.673