Zurück zur Übersicht

Helmholz: Multiple vulnerabilities in REX100/REX200/REX250

VDE-2026-059
Last update
27.05.2026 13:00
Published at
27.05.2026 13:00
Vendor(s)
Helmholz GmbH & Co. KG
External ID
VDE-2026-059
CSAF Document
Download

Summary

Two command injection vulnerabilities have been discovered in Helmholz REX100/REX200/REX250.

Impact

The vulnerabilities allow for command injection in REX100/REX200/REX250 with varying prerequisites resulting in full system compromise.

Affected Product(s)

Model no. Product name Affected versions
REX100 Firmware <=3.0.2, Firmware 3.0.2
REX200/250 Firmware 8.4.4, Firmware <=8.4.4

Vulnerabilities

Expand / Collapse all

Published
27.05.2026 10:10
Severity
8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness
Improper Validation of Specified Type of Input (CWE-1287)
Summary

A low privileged local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an USB stick leading to code execution. This can result in a total loss of confidentiality, integrity and availability.

References
cve.org | nvd.nist.gov

Published
27.05.2026 10:10
Severity
7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Weakness
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)
Summary

A high privileged attacker can alter the config generator injecting a payload into future created configurations. The device is not correctly checking this configuration value before passing it to an system execute leading to code execution. This can result in a total loss of confidentiality, integrity and availability.

References
cve.org | nvd.nist.gov

Remediation

Update:

  • REX200/REX250: 8.4.5
  • REX100: 3.0.3

Acknowledgments

Helmholz GmbH & Co. KG thanks the following parties for their efforts:

Revision History

Version Date Summary
1.0.0 27.05.2026 13:00 Initial revision.