Description
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dash.php files saveDashboardLayout function due to improper neutralization of special elements in a SQL INSERT command allowing for reading the whole database and inserting entries into a non critical table. This can result in a total loss of confidentiality and some loss of integrity.
Published: 2026-05-27
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An attacker with low privileged remote access can exploit an unauthenticated SQL Injection flaw in the saveDashboardLayout function of the dash.php file. The flaw arises because user input is incorporated into a SQL INSERT statement without proper neutralization of special characters, allowing the attacker to read arbitrary data from the database and insert entries into a non‑critical table. The result is a full loss of confidentiality of database contents and a loss of integrity for at least one table.

Affected Systems

The vulnerability affects Helmholz myREX24V2 and its virtual variant as well as MB connect line mbCONNECT24 and mymbCONNECT24. The impacted versions are indicated as 2.20.0 in the published CPE strings. Affected are the software catalogs for both Helmholz and MB connect line.

Risk and Exploitability

The CVSS score of 7.1 classifies this as a high‑severity flaw. The EPSS score is not available, but the vulnerability is not currently listed in CISA’s KEV catalog. Attackers are likely able to reach the vulnerable endpoint over the network without authentication, making the attack path straightforward for anyone with network visibility to the affected web application. Given the high CVSS and the absence of mitigation indications, the overall risk is moderate to high.

Generated by OpenCVE AI on May 27, 2026 at 10:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Obtain and apply the vendor‑issued patch or upgrade to the latest release that removes the unsanitized input from the SQL INSERT statement.
  • Implement parameterized queries or prepared statements for all database interactions to eliminate the possibility of SQL injection in the saveDashboardLayout function.
  • Restrict database user privileges so that the application uses the minimal set of permissions required; prevent read or write access to all tables except those explicitly needed by the application.

Generated by OpenCVE AI on May 27, 2026 at 10:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 27 May 2026 09:00:00 +0000

Type Values Removed Values Added
Description An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dash.php files saveDashboardLayout function due to improper neutralization of special elements in a SQL INSERT command allowing for reading the whole database and inserting entries into a non critical table. This can result in a total loss of confidentiality and some loss of integrity.
Title Authenticated SQLi in saveDashboardLayout function
First Time appeared Helmholz
Helmholz myrex24v2
Helmholz myrex24v2.virtual
Helmholz myrex24v2virtual
Mb Connect Line
Mb Connect Line mbconnect24
Mb Connect Line mymbconnect24
Weaknesses CWE-89
CPEs cpe:2.3:a:helmholz:myrex24v2.virtual:*:*:*:*:*:*:*:*
cpe:2.3:a:helmholz:myrex24v2:*:*:*:*:*:*:*:*
cpe:2.3:a:mb_connect_line:mbconnect24:*:*:*:*:*:*:*:*
cpe:2.3:a:mb_connect_line:mymbconnect24:*:*:*:*:*:*:*:*
cpe:2.3:o:helmholz:myrex24v2:2.20.0:*:*:*:*:*:*:*
cpe:2.3:o:helmholz:myrex24v2virtual:2.20.0:*:*:*:*:*:*:*
cpe:2.3:o:mb_connect_line:mbconnect24:2.20.0:*:*:*:*:*:*:*
cpe:2.3:o:mb_connect_line:mymbconnect24:2.20.0:*:*:*:*:*:*:*
Vendors & Products Helmholz
Helmholz myrex24v2
Helmholz myrex24v2.virtual
Helmholz myrex24v2virtual
Mb Connect Line
Mb Connect Line mbconnect24
Mb Connect Line mymbconnect24
References
Metrics cvssV3_1

{'score': 7.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N'}

cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Helmholz Myrex24v2 Myrex24v2.virtual Myrex24v2virtual
Mb Connect Line Mbconnect24 Mymbconnect24
cve-icon MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published:

Updated: 2026-05-27T11:58:44.521Z

Reserved: 2026-04-15T09:33:02.612Z

Link: CVE-2026-40833

cve-icon Vulnrichment

Updated: 2026-05-27T11:58:39.906Z

cve-icon NVD

Status : Deferred

Published: 2026-05-27T09:16:28.950

Modified: 2026-05-27T14:53:22.863

Link: CVE-2026-40833

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T10:45:31Z

Weaknesses