CVE-2024-45275

Summary

The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.

Affected Software

VendorProductVersion RangeStatus
MB connect linembNET.mini0.0.0 <= 2.2.13affected
HelmholzREX1000.0.0 <= 2.2.13affected

Weaknesses

  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

CVE Program Container

Additional References

References