Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

MB connect line — Vulnerabilities & Security Advisories 38

Browse all 38 CVE security advisories affecting MB connect line. AI-powered Chinese analysis, POCs, and references for each vulnerability.

MB connect line is a software platform primarily utilized for managing and exchanging electronic documents, including invoices and orders, within business-to-business environments. Security audits have identified thirty-eight Common Vulnerabilities and Exposures (CVEs) associated with the system, indicating a significant historical attack surface. The most prevalent vulnerability classes include remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and improper access controls in earlier versions. These defects have allowed attackers to potentially compromise system integrity or access sensitive financial data. While recent updates have addressed many of these issues, the high volume of recorded CVEs suggests a need for rigorous patch management. Organizations deploying this solution must prioritize regular security assessments and ensure all components are updated to mitigate known risks effectively.

Found 13 results / 38Clear Filters
Top products by MB connect line: mbNET.mini mbCONNECT24 mymbCONNECT24 mbDIALUP MB connect line mbCONNECT24 mbNET HW1
CVE IDTitleCVSSSeverityPublished
CVE-2025-41681 Persistent Cross-Site Scripting via POST Requests Due to Improper Neutralization of Input — mbNET.miniCWE-79 4.8 Medium2025-07-21
CVE-2025-41679 Unauthenticated Buffer Overflow in Conftool Service Leading to Denial of Service — mbNET.miniCWE-787 5.3 Medium2025-07-21
CVE-2025-41678 SQL Injection via POST Requests Allowing Configuration Database Manipulation — mbNET.miniCWE-89 6.5 Medium2025-07-21
CVE-2025-41677 Resource Exhaustion via POST Requests to send-mail Action — mbNET.miniCWE-400 4.9 Medium2025-07-21
CVE-2025-41676 Resource Exhaustion via POST Requests to send-sms Action — mbNET.miniCWE-400 4.9 Medium2025-07-21
CVE-2025-41675 Remote Command Injection via GET in Cloud Server Communication Script Due to Improper Input Neutralization — mbNET.miniCWE-78 7.2 High2025-07-21
CVE-2025-41674 Remote Command Injection in diagnostic Action Due to Improper Input Neutralization — mbNET.miniCWE-78 7.2 High2025-07-21
CVE-2025-41673 Remote Command Injection in send_sms Action Due to Improper Input Neutralization — mbNET.miniCWE-78 7.2 High2025-07-21
CVE-2024-45276 MB connect line/Helmholz: tmp directory exposed via webservice — mbNET.miniCWE-306 7.5 High2024-10-15
CVE-2024-45275 MB connect line/Helmholz: Hardcoded user accounts with hard-coded passwords — mbNET.miniCWE-798 9.8 Critical2024-10-15
CVE-2024-45274 MB connect line/Helmholz: Remote code execution via confnet service — mbNET.miniCWE-306 9.8 Critical2024-10-15
CVE-2024-45273 MB connect line/Helmholz: Weak encryption of configuration file — mbNET.miniCWE-261 8.4 High2024-10-15
CVE-2024-45271 MB connect line/Helmholz: Remote code execution due to improper input validation — mbNET.miniCWE-94 8.4 High2024-10-15

This page lists every published CVE security advisory associated with MB connect line. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.