Description

An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.

INFO

Published Date :

2024-10-15T10:27:52.208Z

Last Modified :

2024-10-16T17:47:04.737Z

Source :

CERTVDE
AFFECTED PRODUCTS

The following products are affected by CVE-2024-45273 vulnerability.

Vendors Products
Helmholz
  • Myrex24.virtual
  • Myrex24 V2
  • Myrex24 V2 Virtual Server
  • Rex100
  • Rex250
  • Rex300
  • Rex 100
  • Rex 100 Firmware
  • Rex 200
  • Rex 200 Firmware
  • Rex 250
  • Rex 250 Firmware
  • Rex 300
  • Rex 300 Firmware
Mb Connect Line
  • Mbnet.mini
Mbconnectline
  • Mbconnect24
  • Mbnet
  • Mbnet.mini
  • Mbnet.mini Firmware
  • Mbnet.rokey
  • Mbnet.rokey Firmware
  • Mbnet Firmware
  • Mbnet Hw1
  • Mbnet Hw1 Firmware
  • Mbnet Mbnet.rokey
  • Mbspider
  • Mbspider Mdh 905
  • Mbspider Mdh 905 Firmware
  • Mbspider Mdh 906
  • Mbspider Mdh 906 Firmware
  • Mbspider Mdh 915
  • Mbspider Mdh 915 Firmware
  • Mbspider Mdh 916
  • Mbspider Mdh 916 Firmware
  • Mymbconnect24
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-45273.

URL Resource
https://cert.vde.com/en/advisories/VDE-2024-056 cve-icon cve-icon
https://cert.vde.com/en/advisories/VDE-2024-066 cve-icon cve-icon
https://cert.vde.com/en/advisories/VDE-2024-068 cve-icon cve-icon
https://cert.vde.com/en/advisories/VDE-2024-069 cve-icon cve-icon
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-062.txt cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact