CVE-2020-12529

Summary

An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2 There is a SSRF in the LDAP access check, allowing an attacker to scan for open ports.

Affected Software

VendorProductVersion RangeStatus
MB connect linemymbCONNECT242.6.2 <= 2.6.2affected
MB connect linembCONNECT242.6.2 <= 2.6.2affected

Weaknesses

  • CWE-918: CWE-918 Server-Side Request Forgery (SSRF)

ADP Enrichment

CVE Program Container

Additional References

References