acer security advisories
12 threat alerts tracking vulnerabilities and security advisories that affect acer products.
Vulnios monitors acer CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent acer security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2026-49197 — acer — predator_connect_w6x_firmware, predator_connect_w6x
Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests when Base64 decoding fails.
criticalCVE-2026-49197Critical Vulnerability: CVE-2026-49200 — acer — wave_7_firmware, wave_7
The acer_cgi.log file in the device firmware is accessible without authentication via the web interface. This file contains cleartext login credentials (for web and Telnet), leading to unauthorized sy
criticalCVE-2026-49200Critical Vulnerability: CVE-2026-49201 — acer — wave_7_firmware, wave_7
The upload.cgi binary, responsible for processing device backups, contains a hardcoded AES encryption key. This allows an attacker to decrypt, modify, and re-encrypt system backups, facilitating persi
criticalCVE-2026-49201Critical Vulnerability: CVE-2026-50214 — acer — connect_m6e_5g_firmware, connect_m6e_5g
The /v1/Plan service relies entirely on a shared global API token for full administrative management, allowing arbitrary creation of zero-cost network access plans.
criticalCVE-2026-50214Critical Vulnerability: CVE-2026-50225 — acer — connect_m6e_5g_firmware, connect_m6e_5g
The registration path /v1/account/register provides no bot mitigation mechanisms, allowing malicious automated systems to flood the database.
criticalCVE-2026-50225Critical Vulnerability: CVE-2026-49199 — acer — predator_connect_w6x_firmware, predator_connect_w6x
Crafted MQTT messages can trigger command injection, resulting in root-level code execution on the target device.
criticalCVE-2026-49199Critical Vulnerability: CVE-2026-49185 — acer — connect_m6e_5g_firmware, connect_m6e_5g
The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec(), allowing command/instruction injection.
criticalCVE-2026-49185Critical Vulnerability: CVE-2026-49186 — acer — connect_m6e_5g_firmware, connect_m6e_5g
The local MQTT broker does not enforce topic-level Access Control Lists (ACLs). This allows any client to subscribe using wildcard characters (# or +) to enumerate hidden network devices or publish ro
criticalCVE-2026-49186Critical Vulnerability: CVE-2026-49188 — acer — connect_m6e_5g_firmware, connect_m6e_5g
The ai_cmd utility executes with full root permissions. It pipes socket inputs directly to popen(), paving the way for unauthenticated users to execute arbitrary root commands.
criticalCVE-2026-49188Critical Vulnerability: CVE-2026-49191 — acer — connect_m6e_5g_firmware, connect_m6e_5g
The production build of the M3WebServer hard-codes its backend API keys, which can be easily intercepted through verbose error handling pages.
criticalCVE-2026-49191Critical Vulnerability: CVE-2026-50208 — acer — connect_m6e_5g_firmware, connect_m6e_5g
High-risk TrustAllCerts routines disable standard TLS certificate validation. Combined with hard-coded DES symmetric encryption keys, a Man-in-the-Middle (MITM) actor could decrypt network traffic.
criticalCVE-2026-50208Critical Vulnerability: CVE-2026-50211 — acer — connect_m6e_5g_firmware, connect_m6e_5g
Leftover engineering diagnostics and factory-level diagnostic software remain exposed on retail builds, giving malicious apps write privileges to internal NVRAM registers.
criticalCVE-2026-50211
Track acer exposure across your environment
Vulnios automatically cross-references your asset inventory against new acer CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan