Outdated and Unused Component Allows for Injection of Malicious Code in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24

Outdated and Unused Component Allows for Injection of Malicious Code in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24

CVE-2020-35564 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. There is an outdated and unused component allowing for malicious user input of active code.

Learn more about our User Device Pen Test.