{ "document": { "acknowledgments": [ { "organization": "CERT@VDE", "summary": "coordination", "urls": [ "https://certvde.com" ] } ], "aggregate_severity": { "namespace": "https://www.first.org/cvss/v3.1/specification-document#Qualitative-Severity-Rating-Scale", "text": "High" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en-GB", "notes": [ { "category": "summary", "text": "There is a vulnerability in myREX24V2/myREX24V2.virtual that allows an authenticated remote attacker to access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters.", "title": "Summary" }, { "category": "description", "text": "CVE-2026-10521 allows an authenticated remote attacker to modify critical program parameters. This can result in a total loss of confidentiality, integrity and availability.", "title": "Impact" }, { "category": "description", "text": "Update the myREX24V2/myREX24V2.virtual instance to version 2.20.2.\n", "title": "Remediation" }, { "category": "legal_disclaimer", "text": "Helmholz shall not be held responsible for any indirect, incidental, special, or consequential damages arising from the distribution or use of this document, or from any actions taken in reliance upon its contents. The information contained herein is provided by Helmholz in good faith and free of charge. To the extent permitted under applicable law, such information does not constitute any representation, warranty, guarantee, contractual commitment, or legal obligation on the part of Helmholz. Users remain solely responsible for evaluating the suitability and impact of the information on their specific systems or installations prior to implementation. If any adverse effects are identified, the information must not be applied.", "title": "Disclaimer" } ], "publisher": { "category": "vendor", "contact_details": "psirt@helmholz.de", "name": "Helmholz GmbH & Co. KG", "namespace": "https://www.helmholz.de" }, "references": [ { "category": "external", "summary": "CERT@VDE Security Advisories for helmholz", "url": "https://certvde.com/en/advisories/vendor/helmholz" }, { "category": "self", "summary": "VDE-2026-070: Helmholz: Authenticated unintended access to critical program parameters in myREX24V2/myREX24V2.virtual - HTML", "url": "https://certvde.com/en/advisories/VDE-2026-070" }, { "category": "self", "summary": "VDE-2026-070: Helmholz: Authenticated unintended access to critical program parameters in myREX24V2/myREX24V2.virtual - CSAF", "url": "https://helmholz.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-070.json" } ], "title": "Helmholz: Authenticated unintended access to critical program parameters in myREX24V2/myREX24V2.virtual", "tracking": { "aliases": [ "VDE-2026-070", "SIM#2026-04" ], "current_release_date": "2026-06-23T12:00:00.000Z", "generator": { "date": "2026-06-23T07:40:26.373Z", "engine": { "name": "Secvisogram", "version": "2.5.44" } }, "id": "VDE-2026-070", "initial_release_date": "2026-06-23T11:00:00.000Z", "revision_history": [ { "date": "2026-06-23T11:00:00.000Z", "number": "1.0.0", "summary": "Initial revision." }, { "date": "2026-06-23T12:00:00.000Z", "number": "1.0.1", "summary": "The alias has been corrected" } ], "status": "final", "version": "1.0.1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_family", "name": "myREX24V2", "product": { "name": "Helmholz myREX24V2", "product_id": "CSAFPID-11001", "product_identification_helper": { "cpe": "cpe:2.3:h:helmholz:myREX24V2:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "myREX24V2.virtual", "product": { "name": "Helmholz myREX24V2.virtual", "product_id": "CSAFPID-11002", "product_identification_helper": { "cpe": "cpe:2.3:h:helmholz:myREX24V2virtual:*:*:*:*:*:*:*:*" } } } ], "category": "product_family", "name": "Hardware" }, { "branches": [ { "category": "product_version_range", "name": "vers:semver/<2.20.2", "product": { "name": "Firmware <2.20.2", "product_id": "CSAFPID-21001" } }, { "category": "product_version", "name": "2.20.2", "product": { "name": "Firmware 2.20.2", "product_id": "CSAFPID-21002", "product_identification_helper": { "cpe": "cpe:2.3:o:helmholz:myREX24V2_firmware:2.20.2:*:*:*:*:*:*:*" } } }, { "category": "product_version", "name": "2.20.1", "product": { "name": "Firmware 2.20.1", "product_id": "CSAFPID-21003", "product_identification_helper": { "cpe": "cpe:2.3:o:helmholz:myREX24V2_firmware:2.20.1:*:*:*:*:*:*:*" } } } ], "category": "product_family", "name": "Firmware" } ], "category": "vendor", "name": "Helmholz" } ], "product_groups": [ { "group_id": "CSAFGID-0001", "product_ids": [ "CSAFPID-31001", "CSAFPID-31002", "CSAFPID-31003", "CSAFPID-31004" ], "summary": "Affected products." }, { "group_id": "CSAFGID-0002", "product_ids": [ "CSAFPID-31005", "CSAFPID-31006" ], "summary": "Fixed products." } ], "relationships": [ { "category": "installed_on", "full_product_name": { "name": "Firmware <=2.20.2 installed on Helmholz myREX24V2", "product_id": "CSAFPID-31001" }, "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11001" }, { "category": "installed_on", "full_product_name": { "name": "Firmware <=2.20.2 installed on Helmholz myREX24V2.virtual", "product_id": "CSAFPID-31002" }, "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11002" }, { "category": "installed_on", "full_product_name": { "name": "Firmware 2.20.1 installed on Helmholz myREX24V2", "product_id": "CSAFPID-31003", "product_identification_helper": { "cpe": "cpe:2.3:o:helmholz:myREX24V2:2.20.1:*:*:*:*:*:*:*" } }, "product_reference": "CSAFPID-21003", "relates_to_product_reference": "CSAFPID-11001" }, { "category": "installed_on", "full_product_name": { "name": "Firmware 2.20.1 installed on Helmholz myREX24V2.virtual", "product_id": "CSAFPID-31004", "product_identification_helper": { "cpe": "cpe:2.3:o:helmholz:myREX24V2virtual:2.20.1:*:*:*:*:*:*:*" } }, "product_reference": "CSAFPID-21003", "relates_to_product_reference": "CSAFPID-11002" }, { "category": "installed_on", "full_product_name": { "name": "Firmware 2.20.2 installed on Helmholz myREX24V2", "product_id": "CSAFPID-31005", "product_identification_helper": { "cpe": "cpe:2.3:o:helmholz:myREX24V2:2.20.2:*:*:*:*:*:*:*" } }, "product_reference": "CSAFPID-21002", "relates_to_product_reference": "CSAFPID-11001" }, { "category": "installed_on", "full_product_name": { "name": "Firmware 2.20.2 installed on Helmholz myREX24V2.virtual", "product_id": "CSAFPID-31006", "product_identification_helper": { "cpe": "cpe:2.3:o:helmholz:myREX24V2virtual:2.20.2:*:*:*:*:*:*:*" } }, "product_reference": "CSAFPID-21002", "relates_to_product_reference": "CSAFPID-11002" } ] }, "vulnerabilities": [ { "cve": "CVE-2026-10521", "cwe": { "id": "CWE-425", "name": "Direct Request ('Forced Browsing')" }, "notes": [ { "audience": "all", "category": "description", "text": "An authenticated remote attacker can access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters. This can result in a total loss of confidentiality, integrity and availability.", "title": "CVE Description" } ], "product_status": { "fixed": [ "CSAFPID-31005", "CSAFPID-31006" ], "known_affected": [ "CSAFPID-31001", "CSAFPID-31002", "CSAFPID-31003", "CSAFPID-31004" ] }, "references": [ { "category": "external", "summary": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N - 8.6 / High", "url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" } ], "remediations": [ { "category": "vendor_fix", "details": "Update the myREX24V2/myREX24V2.virtual instance to version 2.20.2.", "group_ids": [ "CSAFGID-0001" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "environmentalScore": 7.2, "environmentalSeverity": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "temporalScore": 7.2, "temporalSeverity": "HIGH", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "CSAFPID-31001", "CSAFPID-31002", "CSAFPID-31003", "CSAFPID-31004" ] } ], "title": "Authenticated unintended access to critical program parameters" } ] }