CRITICAL🇵🇱 Wersja polska

CVE-2024-45274

CVSS 9.8v3.1pub. 2024-10-15upd. 2025-11-03

An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication.

🤖 AI Analysis
How it works

The vulnerability results from the lack of required authentication (CWE-306) for a function accepting commands via UDP. An attacker with network access to the device can send crafted UDP packets containing system commands, which are executed directly by the device's operating system. The attack vector is network-based and does not require user interaction or prior system access.

Impact

An attacker can gain full control over the device by executing arbitrary operating system commands, resulting in violations of confidentiality, integrity, and system availability. In the context of industrial devices (industrial gateway/router), this can lead to disruption of operational processes or use of the device as an entry point to the OT network.

Mitigation & patch

Patches available from the manufacturer should be applied according to the references (https://cert.vde.com/en/advisories/VDE-2024-056 and https://cert.vde.com/en/advisories/VDE-2024-066). As a temporary measure, it is recommended to restrict network access to devices through a firewall or network segmentation and block unauthorized UDP traffic to these devices.

Who is affected

Mbconnectline Mbnet.Mini devices (firmware) and Helmholz Rex 100 devices (firmware) — specific versions indicated in the manufacturer's references (CERT VDE advisories VDE-2024-056 and VDE-2024-066)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Helmholz Rex 100

    HW
    Helmholz
    wszystkie wersje
  • Helmholz Rex 100 Firmware

    OS
    Helmholz
    < 2.3.1
  • Mbconnectline Mbnet.mini

    HW
    Mbconnectline
    wszystkie wersje
  • Mbconnectline Mbnet.mini Firmware

    OS
    Mbconnectline
    < 2.3.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-45275CRITICAL9.8PL ✓ten sam produkt

Zakodowane na stałe dane logowe w urządzeniach Mbconnectline i Helmholz

CVE-2025-41675HIGH7.2ten sam produkt

A high privileged remote attacker can execute arbitrary system commands via GET requests in the cloud server c...

CVE-2025-41674HIGH7.2ten sam produkt

A high privileged remote attacker can execute arbitrary system commands via POST requests in the diagnostic ac...

CVE-2025-41673HIGH7.2ten sam produkt

A high privileged remote attacker can execute arbitrary system commands via POST requests in the send_sms acti...

CVE-2024-45276HIGH7.5ten sam produkt

An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to missing authent...