Description
An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the userinfo endpoint due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.
Published: 2026-05-27
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An unauthenticated remote attacker can exploit a SQL Injection flaw in the userinfo endpoint caused by inadequate neutralization of special elements in a SQL SELECT statement. The flaw is a classic CWE-89 injection, allowing the attacker to retrieve sensitive information from the database, leading to total loss of confidentiality.

Affected Systems

The vulnerability affects Helmholz myREX24V2 and myREX24V2.virtual, as well as MB Connect Line mbCONNECT24 and mymbCONNECT24, all running firmware or software version 2.20.0.

Risk and Exploitability

With a CVSS score of 8.7, the vulnerability is high severity, but no EPSS score is available, suggesting limited publicly known exploitation data. It is not listed in CISA KEV, yet it can be exploited over the network by sending crafted requests to the unauthenticated userinfo endpoint without requiring any credentials. The attack path is straightforward: any attacker can trigger the injection remotely by targeting the endpoint, making this a significant threat for exposed devices.

Generated by OpenCVE AI on May 27, 2026 at 09:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install the latest firmware or software update released by Helmholz or MB Connect Line that fixes the SQL injection in the userinfo endpoint
  • Restrict or disable the userinfo endpoint from external network access, or enforce authentication before allowing connections
  • If a patch is not yet available, temporarily block unauthenticated traffic to the userinfo endpoint using firewall rules or network segmentation

Generated by OpenCVE AI on May 27, 2026 at 09:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 27 May 2026 08:00:00 +0000

Type Values Removed Values Added
Description An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the userinfo endpoint due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.
Title Unauthenticated SQLi in userinfo Endpoint
First Time appeared Helmholz
Helmholz myrex24v2
Helmholz myrex24v2.virtual
Helmholz myrex24v2virtual
Mb Connect Line
Mb Connect Line mbconnect24
Mb Connect Line mymbconnect24
Weaknesses CWE-89
CPEs cpe:2.3:a:helmholz:myrex24v2.virtual:*:*:*:*:*:*:*:*
cpe:2.3:a:helmholz:myrex24v2:*:*:*:*:*:*:*:*
cpe:2.3:a:mb_connect_line:mbconnect24:*:*:*:*:*:*:*:*
cpe:2.3:a:mb_connect_line:mymbconnect24:*:*:*:*:*:*:*:*
cpe:2.3:o:helmholz:myrex24v2:2.20.0:*:*:*:*:*:*:*
cpe:2.3:o:helmholz:myrex24v2virtual:2.20.0:*:*:*:*:*:*:*
cpe:2.3:o:mb_connect_line:mbconnect24:2.20.0:*:*:*:*:*:*:*
cpe:2.3:o:mb_connect_line:mymbconnect24:2.20.0:*:*:*:*:*:*:*
Vendors & Products Helmholz
Helmholz myrex24v2
Helmholz myrex24v2.virtual
Helmholz myrex24v2virtual
Mb Connect Line
Mb Connect Line mbconnect24
Mb Connect Line mymbconnect24
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Helmholz Myrex24v2 Myrex24v2.virtual Myrex24v2virtual
Mb Connect Line Mbconnect24 Mymbconnect24
cve-icon MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published:

Updated: 2026-05-27T12:03:54.226Z

Reserved: 2026-04-15T09:33:02.610Z

Link: CVE-2026-40810

cve-icon Vulnrichment

Updated: 2026-05-27T12:03:47.917Z

cve-icon NVD

Status : Received

Published: 2026-05-27T08:16:41.193

Modified: 2026-05-27T08:16:41.193

Link: CVE-2026-40810

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T09:30:27Z

Weaknesses