Description
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getWidgetTags function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.
Published: 2026-05-27
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an unauthenticated SQL injection flaw in the getWidgetTags function, arising from insufficient neutralization of special characters in a SQL SELECT command. The flaw allows a low‑privileged remote attacker to inject malicious SQL that can read or modify database contents, resulting in total loss of confidentiality. The weakness is identified as CWE‑89.

Affected Systems

Affected products are Helmholz MyREX24 V2 (including the virtual variant) and MB Connect Line MBConnect24 / myMBConnect24, all running firmware/OS version 2.20.0. These devices expose the getWidgetTags endpoint that is reachable over the network without authentication.

Risk and Exploitability

The CVSS score of 7.1 reflects a high‑severity vulnerability that is exploitable by remote actors who can reach the getWidgetTags URL. Although the EPSS score is not available, the lack of authentication and the simplicity of the injection indicate a realistic exploitation probability. The vulnerability is not listed in the CISA KEV catalog, but its confidentiality impact and the need for early remediation make it a significant risk in environments where these devices are exposed.

Generated by OpenCVE AI on May 27, 2026 at 11:06 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Deploy the latest firmware or vendor‑supplied update that addresses the SQL injection issue in the getWidgetTags function.
  • If a vendor update is not yet available, block or restrict network access to the getWidgetTags endpoint or the device’s management interface from untrusted networks.
  • Implement application‑level safeguards such as input validation or parameterized queries to prevent SQL injection in the getWidgetTags code.

Generated by OpenCVE AI on May 27, 2026 at 11:06 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 27 May 2026 09:00:00 +0000

Type Values Removed Values Added
Description An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getWidgetTags function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.
Title Authenticated SQLi in getWidgetTags function
First Time appeared Helmholz
Helmholz myrex24v2
Helmholz myrex24v2.virtual
Helmholz myrex24v2virtual
Mb Connect Line
Mb Connect Line mbconnect24
Mb Connect Line mymbconnect24
Weaknesses CWE-89
CPEs cpe:2.3:a:helmholz:myrex24v2.virtual:*:*:*:*:*:*:*:*
cpe:2.3:a:helmholz:myrex24v2:*:*:*:*:*:*:*:*
cpe:2.3:a:mb_connect_line:mbconnect24:*:*:*:*:*:*:*:*
cpe:2.3:a:mb_connect_line:mymbconnect24:*:*:*:*:*:*:*:*
cpe:2.3:o:helmholz:myrex24v2:2.20.0:*:*:*:*:*:*:*
cpe:2.3:o:helmholz:myrex24v2virtual:2.20.0:*:*:*:*:*:*:*
cpe:2.3:o:mb_connect_line:mbconnect24:2.20.0:*:*:*:*:*:*:*
cpe:2.3:o:mb_connect_line:mymbconnect24:2.20.0:*:*:*:*:*:*:*
Vendors & Products Helmholz
Helmholz myrex24v2
Helmholz myrex24v2.virtual
Helmholz myrex24v2virtual
Mb Connect Line
Mb Connect Line mbconnect24
Mb Connect Line mymbconnect24
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Helmholz Myrex24v2 Myrex24v2.virtual Myrex24v2virtual
Mb Connect Line Mbconnect24 Mymbconnect24
cve-icon MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published:

Updated: 2026-05-27T11:56:38.229Z

Reserved: 2026-04-15T09:33:02.613Z

Link: CVE-2026-40842

cve-icon Vulnrichment

Updated: 2026-05-27T11:56:33.618Z

cve-icon NVD

Status : Deferred

Published: 2026-05-27T09:16:30.310

Modified: 2026-05-27T14:53:22.863

Link: CVE-2026-40842

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T11:15:20Z

Weaknesses