EarlyNarratives
Pricing
Start free trialSign in
Start free trialSign in
Signal

Critical remote code execution and SQL injection vulnerabilities disclosed in industrial and identity management software

Evidence first: scan the strongest sources, then decide whether to go deeper.

Published 2026-03-24 03:00 UTCUpdated 2026-03-24 03:00 UTC
rss
cvevulnerabilityexploitincident_responsesecurity_advisory
Source links open
Source links and full evidence are open here. Archive history, compare-over-time, alerts, exports, API, integrations, and workflow are paid.
BackEvidence (4)Get the free brief by emailStart free trial
No card needed for the free brief.
Evidence trail (top sources)
top sources (2 domains)domains are deduped. counts indicate coverage, not truth.
2 top sources shown
Vulnerabilities in Helmholz myREX24V2 / myREX24V2.virtual
NCSC-FI - Vulnerabilities · News · certvde.com · 2026-03-24 03:00 UTC
Vulnerabilities in Keycloak
NCSC-FI - Vulnerabilities · News · access.redhat.com · 2026-03-24 03:00 UTC
limited source diversity in top sources
View all evidence
Overview

Multiple critical vulnerabilities have been disclosed affecting industrial control and identity management systems.

Entities
HelmholzMB connect lineWAGOKeycloak
Score total
0.87
Momentum 24h
4
Posts
4
Origins
2
Source types
1
Duplicate ratio
25%
Why now
  • Official fixes have just been released, urging immediate remediation.
  • The vulnerabilities have high CVSS scores indicating severe impact if exploited.
  • Disclosure across multiple critical infrastructure and identity platforms highlights widespread risk.
Why it matters
  • These vulnerabilities enable unauthenticated attackers to gain full system or device control, risking operational disruption.
  • SQL injection and access control flaws can lead to data breaches and unauthorized resource manipulation.
  • Timely patching is critical to prevent exploitation in industrial and identity management environments.
LLM analysis
Topic mix: lowPromo risk: lowSource quality: medium
Recurring claims
  • CVE-2026-32968 allows unauthenticated remote code execution in Helmholz myREX24V2 and MB connect line mbCONNECT24/mymbCONNECT24 products.
  • CVE-2026-32969 is a pre-authentication blind SQL injection vulnerability in the userinfo endpoint of Helmholz and MB connect line products.
  • CVE-2026-3587 in WAGO managed switches allows unauthenticated attackers to escape CLI restrictions and gain root access.
  • Keycloak vulnerabilities CVE-2026-4628 and CVE-2026-4633 allow unauthorized resource modification and user enumeration respectively.
How sources frame it
  • NCSC-FI - Vulnerabilities: neutral
All evidence
All evidence
Vulnerabilities in Helmholz myREX24V2 / myREX24V2.virtual
NCSC-FI - Vulnerabilities · certvde.com · 2026-03-24 03:00 UTC
Vulnerabilities in Keycloak
NCSC-FI - Vulnerabilities · access.redhat.com · 2026-03-24 03:00 UTC
Show filters & breakdown
Posts loaded: 0Publishers: 1Origin domains: 2Duplicates: -
Showing 2 / 0
Top publishers (this list)
  • NCSC-FI - Vulnerabilities (2)
Top origin domains (this list)
  • certvde.com (1)
  • access.redhat.com (1)