Unrated severityNVD Advisory· Published Mar 23, 2026· Updated Mar 23, 2026
Unauthenticated RCE in com_mb24sysapi
CVE-2026-32968
Description
Due to the improper neutralisation of special elements used in an OS command, an unauthenticated remote attacker can exploit an RCE vulnerability in the com_mb24sysapi module, resulting in full system compromise. This vulnerability is a variant attack for CVE-2020-10383.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
40.0.0+ 1 more
- (no CPE)range: 0.0.0
- (no CPE)range: 0.0.0
- Range: 0.0.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.