Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-33613
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
MB connect line mbCONNECT24 vulnerable to RCE in generateSrpArray
Source: NVD (National Vulnerability Database)
Vulnerability Description
Due to the improper neutralisation of special elements used in an OS command, a remote attacker can exploit an RCE vulnerability in the generateSrpArray function, resulting in full system compromise. This vulnerability can only be attacked if the attacker has some other way to write arbitrary data to the user table.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Source: NVD (National Vulnerability Database)
Vulnerability Title
MB Connect Line mbCONNECT24 操作系统命令注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
MB Connect Line mbCONNECT24是德国MB Connect Line公司的一套远程服务门户网站。该产品支持远程接入、数据记录和报警等功能。 MB connect line mbCONNECT24存在操作系统命令注入漏洞,该漏洞源于操作系统命令特殊元素中和不当,可能导致远程代码执行。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
MB connect linembCONNECT24 0.0.0 ~ 2.19.4 -
MB connect linemymbCONNECT24 0.0.0 ~ 2.19.4 -
II. Public POCs for CVE-2026-33613
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2026-33613
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: mbCONNECT24
Same vendor: MB connect line
Same weakness: CWE-78
V. Comments for CVE-2026-33613

No comments yet

Leave a comment