CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-50226

Fixed AES-128-CBC keys inside the AcerConnect OTA application let attackers forge authorization credentials for arbitrary IMEI numbers. This allows unauthorized actors to list catalog items and extract protected binaries from pre-signed cloud links.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.7%

CVSS Severity

CVSS v3 Score 5.3

References

https://community.acer.com/en/kb/articles/19707

Products affected by CVE-2026-50226

Acer » Connect M6e 5g » Version: N/A

cpe:2.3:h:acer:connect_m6e_5g:-
Acer » Connect M6e 5g Firmware » Version: m6e_ai_1.00.000019

cpe:2.3:o:acer:connect_m6e_5g_firmware:m6e_ai_1.00.000019

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-50226

Products

Pricing

Contact Us