CVE 8.6 HIGH

Predator Connect W6x: Web Interface Command Injection_CVE-2026-49196

May 29, 2026 invoker category_cve

8.6 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arbitrary shell commands.

AI Analysis

Command injection vulnerability in Predator Connect W6x web interface due to unsanitized MAC address input

Basic Information

ID CVE-2026-49196

Source Acer

Published May 29, 2026 at 08:15

Affected Product

Vendor Acer

Product Predator Connect W6x

Version W6x_GBL_2.00.000005

Affected Versions Acer Predator Connect W6x W6x_GBL_2.00.000005

CWE Classification

CWE-77

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor Acer

Product Predator Connect W6x

Version W6x_GBL_2.00.000005

References

community.acer.com /en/kb/articles/19672

{
    "lastseen": "",
    "description": "The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arbitrary shell commands.",
    "published": "2026-05-29T08:15:49.883Z",
    "modified": "2026-05-29T08:15:49.883Z",
    "type": "cve",
    "title": "Predator Connect W6x: Web Interface Command Injection",
    "source": "Acer",
    "references": "https://community.acer.com/en/kb/articles/19672",
    "id": "CVE-2026-49196",
    "bulletinFamily": "",
    "cwe": [
        "CWE-77"
    ],
    "cvelist": null,
    "sourceData": "Acer Predator Connect W6x W6x_GBL_2.00.000005",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Predator Connect W6x",
    "version": "W6x_GBL_2.00.000005",
    "vendor": "Acer",
    "ai_description": "Command injection vulnerability in Predator Connect W6x web interface due to unsanitized MAC address input",
    "ai_severity": "High",
    "ai_vendor": "Acer",
    "ai_product": "Predator Connect W6x",
    "ai_version": "W6x_GBL_2.00.000005",
    "ai_score": 8.6
}

💭 Join the Security Discussion ❌ Cancel Reply