A vulnerability has been found in MB connect line mbCONNECT24 and mymbCONNECT24 up to 2.19.4 and classified as critical . This impacts the function generateSrpArray . This manipulation causes os command injection. This vulnerability is tracked as CVE-2026-33613 . The attack is possible to be carried out remotely. No exploit exists.