Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Lifecycle Timeline
3DescriptionCVE.org
An unauthenticated remote attacker can access a configuration file containing database credentials. This can result in a some loss of confidentiality, but there is no endpoint exposed to use these credentials.
AnalysisAI
Unauthenticated remote attackers can access configuration files containing database credentials in MB Connect Line mbconnect24 and mymbconnect24 products, resulting in disclosure of sensitive authentication material. Although CVSS rates this as 5.3 (low severity confidentiality impact), the practical risk is limited because the disclosed credentials cannot be directly exploited to compromise additional systems-no exposed endpoint exists to leverage them. No public exploit code or active exploitation has been identified at the time of analysis.
Technical ContextAI
This vulnerability exploits improper access controls on configuration files, classified under CWE-497 (Exposure of Sensitive System Information to an Unauthorized Control Sphere). The affected products-MB Connect Line's mbconnect24 and mymbconnect24 platforms-store database credentials in configuration files that are accessible via unauthenticated network requests without proper authentication or authorization checks. The root cause is a failure to restrict file access or to separate sensitive credentials from accessible configuration, allowing remote attackers to retrieve plaintext or weakly protected database connection strings.
RemediationAI
Organizations using mbconnect24 or mymbconnect24 should immediately apply vendor-released patches as documented in the MB Connect Line security advisory (VDE-2026-030). The primary fix is to upgrade to patched versions as specified by the vendor. Additionally, implement network-level access controls to restrict access to configuration files and sensitive endpoints, employ proper authentication and authorization checks on all file access endpoints, consider relocating database credentials to secure credential management systems (vaults or environment variables), and conduct an audit to determine whether any database credentials were exposed and require rotation. Refer to https://certvde.com/de/advisories/VDE-2026-030 for the exact patched version numbers and deployment guidance.
More in Mbconnect24
View allAn issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. Rat
SQL injection in MB Connect Line's mbCONNECT24 and mymbCONNECT24 platforms allows unauthenticated remote attackers to ex
An Authorization Bypass vulnerability was found in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and
An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. Rat
Privileged remote modification of critical program parameters in MB connect line mbCONNECT24 and mymbCONNECT24 allows au
An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak
An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.6.1. Rat
Blind SQL injection in MB Connect Line mbCONNECT24 and mymbCONNECT24 allows unauthenticated remote attackers to extract
SQL injection in MB Connect Line's mbCONNECT24 and mymbCONNECT24 products allows unauthenticated remote attackers to ext
An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with
In mymbCONNECT24, mbCONNECT24 <= 2.9.0 an unauthenticated user can enumerate valid backend users by checking what kind o
In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-18180
GHSA-x585-wrhm-2vx3