This page lists publicly disclosed CVE vulnerabilities affecting helmholz rex_250_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-45273 | An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used. | [email protected] | 8.4 | 0.07% | 2024-10-15 | 2026-06-17 |
| CVE-2024-45272 | An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with a high chance of success, resulting in connection lost. | [email protected] | 7.5 | 0.60% | 2024-10-15 | 2026-06-17 |
| CVE-2023-34412 | A vulnerability in Red Lion Europe mbNET/mbNET.rokey and Helmholz REX 200 and REX 250 devices with firmware lower 7.3.2 allows an authenticated remote attacker with high privileges to inject malicious HTML or JavaScript code (XSS). | [email protected] | 4.8 | 0.34% | 2023-08-17 | 2026-06-17 |