MB connect line Update
1800Warning Date
Severity Level
Warning Number
Target Sector
3 March, 2021
● High
2021-2560
Manufacturing
Description:
MB connect line has released a security update to address multiple vulnerabilities in the following products:
- mymbCONNECT24
- v2.6.1 and prior
- mbCONNECT24
- v2.6.1 and prior
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting (XSS)
- Server-side request forgery (SSRF)
- Denial of service (DoS)
- Local Privilege Escalation
Best practice and Recommendations:
The CERT team encourages users to review MB connect line security advisory and update to version 2.71: