CVE-2026-40811

Vulnerability

An unauthenticated SQL injection vulnerability exists in the ssoabstractservice component of MB connect line mbCONNECT24 and mymbCONNECT24. The issue stems from improper neutralization of special elements used in a SQL SELECT command, as described in the advisory [1]. The exact affected versions are not fully specified in the available references, but the advisory confirms multiple SQLi vulnerabilities exist in these products and points to the CVE description for details [1].

Exploitation

An unauthenticated remote attacker can exploit this vulnerability by sending specially crafted input to the vulnerable ssoabstractservice endpoint. No authentication or prior access is required. The attacker needs only network access to the affected service. The exploitation sequence involves injecting SQL commands through the parameter that is not properly sanitized, leading to the execution of arbitrary SQL queries against the backend database [1].

Impact

Successful exploitation allows the attacker to read sensitive data from the database, resulting in a total loss of confidentiality. The advisory [1] states that the vulnerability allows varying access to the database, and the CVE description confirms the total loss of confidentiality. The attacker does not gain write access or full system control based on the available information.

Mitigation

The advisory [1] does not provide specific fixed version numbers or release dates. Users should contact MB connect line GmbH for official patches and updates. If no patch is yet available, consider restricting network access to the affected service as a temporary workaround. The product is not listed on the CISA KEV at the time of writing.