mbs-solutions CVE Vulnerabilities & Metrics

Focus on mbs-solutions vulnerabilities and metrics.

Last updated: 13 Jul 2026, 22:25 UTC

About mbs-solutions Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with mbs-solutions. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total mbs-solutions CVEs: 11
Earliest CVE date: 03 Jun 2026, 13:16 UTC
Latest CVE date: 03 Jun 2026, 13:16 UTC

Latest CVE reference: CVE-2026-35085

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 11

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): -100.0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): -100.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical mbs-solutions CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 0.0

Max CVSS: 0

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range Count
0.0-3.9 11
4.0-6.9 0
7.0-8.9 0
9.0-10.0 0

CVSS Distribution Chart

Top 5 Highest CVSS mbs-solutions CVEs

These are the five CVEs with the highest CVSS scores for mbs-solutions, sorted by severity first and recency.

All CVEs for mbs-solutions

CVE-2026-35085 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root.

CVE-2026-35084 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root.

CVE-2026-35083 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root.

CVE-2026-35082 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

The ugw-logread method allows a remote attacker with user privileges to access arbitrary local files due to insufficient validation of user-supplied input.

CVE-2026-35081 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

The ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary processes due to insufficient validation of user-supplied input.

CVE-2026-35080 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.

CVE-2026-35079 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

The ugw-restore method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.

CVE-2026-35078 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

The ugw-logstop method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.

CVE-2026-35077 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

The ugw-delete-file method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.

CVE-2026-35076 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

The bac-scanresult method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.

CVE-2026-35075 mbs-solutions vulnerability CVSS: 0 03 Jun 2026, 13:16 UTC

An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.