Skip to main content

Mbconnect24 CVE-2026-33613

| EUVDEUVD-2026-18173 HIGH
OS Command Injection (CWE-78)
2026-04-02 CERTVDE GHSA-jmc2-v37m-hrwj
7.2
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.2 HIGH
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
Re-analysis Queued
Apr 16, 2026 - 15:52 vuln.today
cvss_changed
EUVD ID Assigned
Apr 02, 2026 - 09:30 euvd
EUVD-2026-18173
Analysis Generated
Apr 02, 2026 - 09:30 vuln.today
CVE Published
Apr 02, 2026 - 08:59 nvd
HIGH 7.2

DescriptionCVE.org

Due to the improper neutralisation of special elements used in an OS command, a remote attacker can exploit an RCE vulnerability in the generateSrpArray function, resulting in full system compromise. This vulnerability can only be attacked if the attacker has some other way to write arbitrary data to the user table.

AnalysisAI

Remote code execution in MB Connect Line mbCONNECT24 and mymbCONNECT24 allows high-privileged authenticated attackers to achieve full system compromise through command injection in the generateSrpArray function. Exploitation requires the attacker to first write arbitrary data to the user table via another vulnerability, establishing a chained attack scenario. No public exploit identified at time of analysis, though the low attack complexity (AC:L) indicates straightforward exploitation once database write access is obtained.

Technical ContextAI

This vulnerability stems from CWE-78 (OS Command Injection), where the generateSrpArray function fails to properly sanitize special elements before passing them to operating system commands. The affected products are MB Connect Line mbCONNECT24 (cpe:2.3:a:mb_connect_line:mbconnect24) and mymbCONNECT24 (cpe:2.3:a:mb_connect_line:mymbconnect24), which are industrial IoT gateway management platforms used for secure remote access to industrial equipment. The command injection occurs when user-controlled data from the database is processed without adequate neutralization of shell metacharacters, allowing arbitrary command execution within the context of the application process. This represents a second-order injection vulnerability, as malicious payloads must first be stored in the user table before being triggered through the SRP (Secure Remote Password) array generation routine.

RemediationAI

Organizations should immediately consult the MB Connect Line vendor advisories available at https://certvde.com/de/advisories/VDE-2026-030 and the CSAF security document at https://mbconnectline.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-030.json for specific patching instructions and affected version identification. Patch availability per vendor advisory should be verified directly through these channels, as exact fixed versions are not specified in the current CVE data. As interim mitigation, organizations should restrict administrative access to mbCONNECT24 and mymbCONNECT24 management interfaces to trusted networks only, implement strong authentication controls for high-privilege accounts, monitor user table modifications for suspicious activity, and audit existing database entries for potential malicious payloads. Network segmentation should isolate these industrial IoT gateway platforms from untrusted networks, and access logging should be enabled to detect potential exploitation chains involving database manipulation followed by SRP array generation operations.

CVE-2020-10383 CRITICAL
9.8 Apr 14

An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. Rat

CVE-2026-33615 CRITICAL
9.1 Apr 02

SQL injection in MB Connect Line's mbCONNECT24 and mymbCONNECT24 platforms allows unauthenticated remote attackers to ex

CVE-2023-0985 HIGH
8.8 Jun 06

An Authorization Bypass vulnerability was found in MB Connect Lines mbCONNECT24, mymbCONNECT24 and Helmholz' myREX24 and

CVE-2020-10382 HIGH
8.8 Apr 14

An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. Rat

CVE-2026-10521 HIGH
8.6 Jun 23

Privileged remote modification of critical program parameters in MB connect line mbCONNECT24 and mymbCONNECT24 allows au

CVE-2024-45273 HIGH
7.8 Oct 15

An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak

CVE-2020-10384 HIGH
7.8 Apr 14

An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.6.1. Rat

CVE-2026-33616 HIGH
7.5 Apr 02

Blind SQL injection in MB Connect Line mbCONNECT24 and mymbCONNECT24 allows unauthenticated remote attackers to extract

CVE-2026-33614 HIGH
7.5 Apr 02

SQL injection in MB Connect Line's mbCONNECT24 and mymbCONNECT24 products allows unauthenticated remote attackers to ext

CVE-2024-45272 HIGH
7.5 Oct 15

An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with

CVE-2021-34580 HIGH
7.5 Oct 27

In mymbCONNECT24, mbCONNECT24 <= 2.9.0 an unauthenticated user can enumerate valid backend users by checking what kind o

CVE-2021-34575 HIGH
7.5 Aug 02

In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an unauthenticated user can enumerate valid users by

Share

CVE-2026-33613 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy