Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

MBS — Vulnerabilities & Security Advisories 15

Browse all 15 CVE security advisories affecting MBS. AI-powered Chinese analysis, POCs, and references for each vulnerability.

MBS is a middleware platform enabling enterprise application integration and data exchange. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with 15 CVEs documented. The platform's complex architecture and extensive third-party integrations create multiple attack surfaces. Notable security characteristics include its widespread deployment in critical infrastructure and frequent default misconfigurations. While no major public incidents have been widely reported, the volume of CVEs suggests ongoing security challenges. Organizations implementing MBS should prioritize hardening configurations and applying patches promptly due to the potential for high-impact exploitation.

Top products by MBS: UBR-01 Mk II
CVE IDTitleCVSSSeverityPublished
CVE-2025-41772 wwwupdate.cgi Session token in URL — UBR-01 Mk IICWE-598 7.5 High2026-03-09
CVE-2025-41767 Signature bypass on update upload — UBR-01 Mk IICWE-347 7.2 High2026-03-09
CVE-2025-41766 Stack buffer overflow on parsing web request — UBR-01 Mk IICWE-787 8.8 High2026-03-09
CVE-2025-41765 Unchecked role in wwwupload.cgi — UBR-01 Mk IICWE-862 9.1 Critical2026-03-09
CVE-2025-41764 Unchecked role in wwwupdate.cgi — UBR-01 Mk IICWE-862 9.1 Critical2026-03-09
CVE-2025-41763 Unchecked role in wwwdnload.cgi — UBR-01 Mk IICWE-497 6.5 Medium2026-03-09
CVE-2025-41762 Secret leak with wwwdnload.cgi — UBR-01 Mk IICWE-328 6.2 Medium2026-03-09
CVE-2025-41761 Privilege escalation possible — UBR-01 Mk IICWE-88 7.8 High2026-03-09
CVE-2025-41760 Pass filter with Empty Table — UBR-01 Mk IICWE-636 4.9 Medium2026-03-09
CVE-2025-41759 Use of wildcard (“*” or “all”) in Block list — UBR-01 Mk IICWE-636 4.9 Medium2026-03-09
CVE-2025-41758 Arbitrary Write with wwwupload.cgi — UBR-01 Mk IICWE-22 8.8 High2026-03-09
CVE-2025-41757 Arbitrary Write with ubr-restore — UBR-01 Mk IICWE-22 8.8 High2026-03-09
CVE-2025-41756 Arbitrary Write with ubr-editfile — UBR-01 Mk IICWE-1242 8.1 High2026-03-09
CVE-2025-41755 Arbitrary Read with ubr-logread — UBR-01 Mk IICWE-22 6.5 Medium2026-03-09
CVE-2025-41754 Arbitrary Read with ubr-editfile — UBR-01 Mk IICWE-1242 6.5 Medium2026-03-09

This page lists every published CVE security advisory associated with MBS. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.