Skip to main content

Mbdialup

2 CVEs product

Monthly

CVE-2021-33527 CRITICAL Act Now

In MB connect line mbDIALUP versions <= 3.9R0.0 a remote attacker can send a specifically crafted HTTP request to the service running with NT AUTHORITY\SYSTEM that will not correctly validate the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Mbdialup
NVD
CVSS 3.1
9.8
EPSS
4.5%
CVE-2021-33526 HIGH This Week

In MB connect line mbDIALUP versions <= 3.9R0.0 a low privileged local attacker can send a command to the service running with NT AUTHORITY\SYSTEM instructing it to execute a malicous OpenVPN. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Privilege Escalation Mbdialup
NVD
CVSS 3.1
7.8
EPSS
0.3%
EPSS 5% CVSS 9.8
CRITICAL Act Now

In MB connect line mbDIALUP versions <= 3.9R0.0 a remote attacker can send a specifically crafted HTTP request to the service running with NT AUTHORITY\SYSTEM that will not correctly validate the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Mbdialup
NVD
EPSS 0% CVSS 7.8
HIGH This Week

In MB connect line mbDIALUP versions <= 3.9R0.0 a low privileged local attacker can send a command to the service running with NT AUTHORITY\SYSTEM instructing it to execute a malicous OpenVPN. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Privilege Escalation Mbdialup
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy