CVE-2026-33617 | MB connect line mbCONNECT24/mymbCONNECT24 up to 2.19.4 Configuration File exposure of sensitive system information to an unauthorized control sphere (VDE-2026-030)

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability categorized as problematic has been discovered in MB connect line mbCONNECT24 and mymbCONNECT24 up to 2.19.4. This vulnerability affects unknown code of the component Configuration File Handler. The manipulation results in exposure of sensitive system information to an unauthorized control sphere.

This vulnerability is reported as CVE-2026-33617. The attack can be launched remotely. No exploit exists.

CVE-2026-33617 | MB connect line mbCONNECT24/mymbCONNECT24 up to 2.19.4 Configuration File exposure of sensitive system information to an unauthorized control sphere (VDE-2026-030)

Post correlati

CVE-2024-57917 | Linux Kernel up to 6.1.124/6.6.71/6.12.9/6.13-rc6 lib/kasprintf.c kvasprintf return value

CVE-2024-24925 | Siemens Simcenter Femap prior 2306.0000 Catia Model File uninitialized pointer (ssa-000072)

CVE-2025-7952 | TOTOLINK T6 4.1.5cu.748 MQTT Packet wireless.so ckeckKeepAlive command injection

CVE-2023-49824 | PixelYourSite Product Catalog Feed Plugin up to 2.1.1 on WordPress cross-site request forgery