CRITICAL🇵🇱 Wersja polska

CVE-2026-49199

CVSS 10.0v4.0pub. 2026-05-29upd. 2026-06-04

Crafted MQTT messages can trigger command injection, resulting in root-level code execution on the target device.

🤖 AI Analysis
How it works

The attacker sends a crafted MQTT message whose content is not properly validated or sanitized by the target device. Improper handling of input data leads to injection and execution of arbitrary system commands (command injection, CWE-77). The exploit does not require any user interaction or account possession on the device — network access to the MQTT service is sufficient.

Impact

The attacker obtains remote code execution (RCE) with root privileges, which means full control over the device, ability to modify configuration, steal data, and potential use of the device as an entry point for further actions on the network.

Mitigation & patch

Apply patches available from the manufacturer according to the references (https://community.acer.com/en/kb/articles/19672). Until the update is applied, it is recommended to restrict network access to the MQTT service on vulnerable devices through a firewall or network segmentation.

Who is affected

Versions indicated in the manufacturer's references (Acer); specific models and software versions were not mentioned in the CVE description

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Acer Predator Connect W6x

    HW
    Acer
    wszystkie wersje
  • Acer Predator Connect W6x Firmware

    OS
    Acer
    ≤ w6x_gbl_2.00.000005
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2026-49197CRITICAL10.0PL ✓ten sam produkt

Acer Connect — pominięcie uwierzytelnienia przez błąd walidacji nagłówka Authorization

CVE-2026-49195HIGH8.7ten sam produkt

Unauthenticated Debug Service. The /sbin/mtk_dut binary is exposed on TCP port 9000 without authentication, al...

CVE-2026-49196HIGH8.6ten sam produkt

The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arb...

CVE-2026-49198HIGH8.3ten sam produkt

Improper access control in the MQTT broker allows wildcard topic subscriptions, exposing all MQTT traffic to u...

CVE-2026-49185CRITICAL10.0PL ✓ten sam vendor

Command injection w Acer Connect M6E 5G via FieldX MDM adb messaging