First published: Tue Jun 06 2023(Updated: )
Exposure of Sensitive Information to an unauthorized actor vulnerability in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and myREX24.virtual in versions <=2.13.3 allow an authorized remote attacker with low privileges to view a limited amount of another accounts contact information.
Credit: info@cert.vde.com info@cert.vde.com
Affected Software | Affected Version | How to fix |
---|---|---|
Mbconnectline Mbconnect24 | <=2.13.3 | |
Mbconnectline Mymbconnect24 | <=2.13.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this vulnerability is CVE-2023-1779.
The severity of CVE-2023-1779 is medium with a severity value of 4.3.
Versions <=2.13.3 of MB Connect Lines mbCONNECT24, mymbCONNECT24, Helmholz' myREX24, and myREX24.virtual are affected by CVE-2023-1779.
CVE-2023-1779 exposes sensitive information to an unauthorized actor by allowing an authorized remote attacker with low privileges to view a limited amount of another account's contact information.
There is no information available about a fix for CVE-2023-1779. It is recommended to follow any security advisories or updates provided by the vendor.