• 1 (current)
  • 2

Multiple vulnerabilities have been discovered in REX100 allowing for RCE or unauthorized file access.



Multiple vulnerabilities have been discovered in Helmholz products that could allow RCE or unauthorized file access. CVE-2024-45272 affects the myREX24 V2 and myREX24.virtual products, while CVE-2024-45273 affects the REX200/250, myREX24 V2myREX24.virtual and REX300 products.



Several Helmholz products are vulnerable to a possible race condition vulnerability in OpenSSH named "regreSSHion".



There exists a vulnerability in all REX 100 devices with firmware <= 2.2.11 that allows an authenticated attacker to execute arbitrary system commands via GET requests.

Update: 03.07.2024 3:30pm 

In section Reported by Sebastian Dietz (CyberDanube) was added.



A stored XXS vulnerability has been found in REX 200 and REX 250 in all versions before 7.3.2.



Two vulnerabilites have been discovered in myREX24 and myREX24.virtual in all versions through 2.13.3.



  • 1 (current)
  • 2

Feeds

Nach Hersteller

Archiv

2024
2023
2022
2021
2020
2019
2018
2017

Legende

(Scoring für CVSS 2.0,3.0+3.1)
keine
Kein CVE verfügbar
Niedrig
0.1 <= 3.9
Mittel
4.0 <= 6.9
Hoch
7.0 <= 8.9
Kritisch
9.0 <= 10.0