{ "document": { "category": "csaf_security_advisory", "csaf_version": "2.0", "tracking": { "generator": { "date": "2025-04-16T10:14:24.527Z", "engine": { "version": "2.5.23", "name": "Secvisogram" } }, "id": "vde-2023-002", "version": "2", "status": "final", "aliases": [ "VDE-2023-002" ], "revision_history": [ { "number": "1", "summary": "initial revision", "date": "2023-05-15T14:06:00.000Z" }, { "number": "2", "summary": "Fix: added distribution", "date": "2025-05-14T13:00:14.000Z" } ], "current_release_date": "2025-05-14T13:00:14.000Z", "initial_release_date": "2023-05-15T14:06:00.000Z" }, "lang": "en-GB", "title": "MB Connect Line: Multiple vulnerabilities in mbConnect24 and mymbConnect24", "acknowledgments": [ { "organization": "CERTVDE", "urls": [ "https://certvde.com" ], "summary": "coordination" }, { "organization": "Helmholz GmbH & Co. KG", "summary": "reporting", "urls": [ "https://www.helmholz.de" ] }, { "summary": "reporting", "names": [ "Hussein Alsharafi" ] } ], "distribution": { "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "notes": [ { "category": "summary", "title": "Summary", "text": "Two vulnerabilites have been discovered in mbCONNECT24 and mbCONNECT24 in all versions through 2.13.3." }, { "category": "description", "title": "Impact", "text": "Please consult the CVE Entries." }, { "category": "description", "title": "Mitigation", "text": "For CVE-2023-0985: If you have MFA enabled on the admin user, the password will still be set, but the attacker will be unable to login as the MFA is still in place." }, { "category": "description", "title": "Remediation", "text": "Update to latest Version: 2.13.4" } ], "publisher": { "category": "vendor", "contact_details": "security-team@mbconnectline.de", "name": "MB connect line GmbH", "namespace": "https://mbconnectline.com" }, "references": [ { "summary": "vde-2023-002: MB Connect Line: Multiple vulnerabilities in mbConnect24 and mymbConnect24 - HTML", "url": "https://certvde.com/de/advisories/vde-2023-002/", "category": "self" }, { "category": "external", "summary": "CERT@VDE Security Advisories for ", "url": "https://certvde.com/en/advisories/vendor/mbconnectline/" }, { "summary": "vde-2023-002: MB Connect Line: Multiple vulnerabilities in mbConnect24 and mymbConnect24 - CSAF", "url": "https://mbconnectline.csaf-tp.certvde.com/.well-known/csaf/white/2023/vde-2023-002.json", "category": "self" } ] }, "product_tree": { "branches": [ { "category": "vendor", "name": "MB connect line GmbH", "branches": [ { "category": "product_family", "name": "Hardware", "branches": [ { "category": "product_name", "name": "mbCONNECT24", "product": { "name": "mbCONNECT24", "product_id": "CSAFPID-11001" } }, { "category": "product_name", "name": "mymbCONNECT24", "product": { "name": "mymbCONNECT24", "product_id": "CSAFPID-11002" } } ] }, { "category": "product_family", "name": "Firmware", "branches": [ { "category": "product_version_range", "name": "<=2.13.3", "product": { "name": "Firmware <=2.13.3", "product_id": "CSAFPID-21001" } }, { "category": "product_version", "name": "2.13.4", "product": { "name": "Firmware 2.13.4", "product_id": "CSAFPID-22001" } } ] } ] } ], "relationships": [ { "category": "installed_on", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11001", "full_product_name": { "name": "Firmware <=2.13.3 installed on mbCONNECT24", "product_id": "CSAFPID-31001" } }, { "category": "installed_on", "product_reference": "CSAFPID-22001", "relates_to_product_reference": "CSAFPID-11001", "full_product_name": { "name": "Firmware 2.13.4 installed on mbCONNECT24", "product_id": "CSAFPID-32001" } }, { "category": "installed_on", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11002", "full_product_name": { "name": "Firmware <=2.13.3 installed on mymbCONNECT24", "product_id": "CSAFPID-31002" } }, { "category": "installed_on", "product_reference": "CSAFPID-22001", "relates_to_product_reference": "CSAFPID-11002", "full_product_name": { "name": "Firmware 2.13.4 installed on mymbCONNECT24", "product_id": "CSAFPID-32002" } } ], "product_groups": [ { "group_id": "CSAFGID-0001", "summary": "affected products", "product_ids": [ "CSAFPID-31001", "CSAFPID-31002" ] }, { "group_id": "CSAFGID-0002", "summary": "fixed products", "product_ids": [ "CSAFPID-32001", "CSAFPID-32002" ] } ] }, "vulnerabilities": [ { "cve": "CVE-2023-0985", "title": "CVE-2023-0985", "product_status": { "known_affected": [ "CSAFPID-31001", "CSAFPID-31002" ], "fixed": [ "CSAFPID-32001", "CSAFPID-32002" ] }, "scores": [ { "cvss_v3": { "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 8.8, "baseSeverity": "HIGH", "temporalScore": 8.8, "temporalSeverity": "HIGH", "environmentalScore": 8.8, "environmentalSeverity": "HIGH" }, "products": [ "CSAFPID-31001", "CSAFPID-31002" ] } ], "notes": [ { "category": "summary", "text": "An Authorization Bypass vulnerability was found in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and myREX24.virtual version <= 2.13.3. An authenticated remote user with low privileges can change the password of any user in the same account. This allows to take over the admin user and therefore fully compromise the account." } ], "remediations": [ { "category": "mitigation", "details": "If you have MFA enabled on the admin user, the password will still be set, but the attacker will be unable to login as the MFA is still in place.", "group_ids": [ "CSAFGID-0001" ] }, { "category": "vendor_fix", "details": "Update to latest Version: 2.13.4", "group_ids": [ "CSAFGID-0001" ] } ], "cwe": { "id": "CWE-639", "name": "Authorization Bypass Through User-Controlled Key" } }, { "cve": "CVE-2023-1779", "title": "CVE-2023-1779", "product_status": { "known_affected": [ "CSAFPID-31001", "CSAFPID-31002" ], "fixed": [ "CSAFPID-32001", "CSAFPID-32002" ] }, "scores": [ { "cvss_v3": { "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE", "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM", "temporalScore": 4.3, "temporalSeverity": "MEDIUM", "environmentalScore": 4.3, "environmentalSeverity": "MEDIUM" }, "products": [ "CSAFPID-31001", "CSAFPID-31002" ] } ], "notes": [ { "category": "summary", "text": "Exposure of Sensitive Information to an unauthorized actor vulnerability in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and myREX24.virtual in versions <=2.13.3 allow an authorized remote attacker with low privileges to view a limited amount of another accounts contact information." } ], "remediations": [ { "category": "vendor_fix", "details": "Update to latest Version: 2.13.4", "group_ids": [ "CSAFGID-0001" ] } ], "cwe": { "id": "CWE-200", "name": "Exposure of Sensitive Information to an Unauthorized Actor" } } ] }