Zurück zur Übersicht

Vulnerabilities in mbCONNECT24/mymbCONNECT24

VDE-2025-035
Last update
24.06.2025 12:00
Published at
24.06.2025 12:00
Vendor(s)
MB connect line GmbH
External ID
VDE-2025-035
CSAF Document
Download

Summary

Two vulnerabilities in mbCONNECT24/mymbCONNECT24 can lead to user enumeration an password bypass.

Impact

CVE-2025-3091: An attacker in possession of the second factor for an user can login as that user without knowledge of the password (first factor)

CVE-2025-3092: An unprotected endpoint can by used to enumerate valid user names.

Affected Product(s)

Model no. Product name Affected versions
mbCONNECT24 Firmware <2.16.5, Firmware <2.18.0
mymbCONNECT24 Firmware <2.16.5, Firmware <2.18.0

Vulnerabilities

Expand / Collapse all

Published
24.09.2025 12:42
Severity
7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Weakness
Observable Response Discrepancy (CWE-204)
Summary

An unauthenticated remote attacker can enumerate valid user names from an unprotected endpoint.

References
cve.org | nvd.nist.gov

Published
24.09.2025 12:42
Severity
7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness
Authorization Bypass Through User-Controlled Key (CWE-639)
Summary

An low privileged remote attacker in possession of the second factor for another user can login as that user without knowledge of the other user`s password.

References
cve.org | nvd.nist.gov

Remediation

CVE-2025-3091: Update to latest version: 2.16.5

CVE-2025-3092: Update to latest version: 2.18.0

Acknowledgments

MB connect line GmbH thanks the following parties for their efforts:

  • CERT@VDE for coordination (see https://certvde.com )
  • Peter Husted Simonsen, Irwin Przeperski from Eviden for reporting

Revision History

Version Date Summary
1 24.06.2025 12:00 Initial revision.