CVE 10 CRITICAL

Predator Connect W6x: Improper Authentication_CVE-2026-49197

May 29, 2026 invoker category_cve

10 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Description

Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests when Base64 decoding fails.

AI Analysis

Improper authentication vulnerability in Predator Connect W6x due to improper validation of HTTP Authorization header

Basic Information

ID CVE-2026-49197

Source Acer

Published May 29, 2026 at 08:24

Affected Product

Vendor Acer

Product Predator Connect W6x

Version W6x_GBL_2.00.000005

Affected Versions Acer Predator Connect W6x W6x_GBL_2.00.000005

CWE Classification

CWE-287

AI Assessment

AI Score 10 / 10

AI Severity Critical

Vendor Acer

Product Predator Connect W6x

Version W6x_GBL_2.00.000005

References

community.acer.com /en/kb/articles/19672

{
    "lastseen": "",
    "description": "Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests when Base64 decoding fails.",
    "published": "2026-05-29T08:24:06.489Z",
    "modified": "2026-05-29T08:24:06.489Z",
    "type": "cve",
    "title": "Predator Connect W6x: Improper Authentication",
    "source": "Acer",
    "references": "https://community.acer.com/en/kb/articles/19672",
    "id": "CVE-2026-49197",
    "bulletinFamily": "",
    "cwe": [
        "CWE-287"
    ],
    "cvelist": null,
    "sourceData": "Acer Predator Connect W6x W6x_GBL_2.00.000005",
    "sourceHref": "",
    "cvss": {
        "score": 10,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Predator Connect W6x",
    "version": "W6x_GBL_2.00.000005",
    "vendor": "Acer",
    "ai_description": "Improper authentication vulnerability in Predator Connect W6x due to improper validation of HTTP Authorization header",
    "ai_severity": "Critical",
    "ai_vendor": "Acer",
    "ai_product": "Predator Connect W6x",
    "ai_version": "W6x_GBL_2.00.000005",
    "ai_score": 10
}

💭 Join the Security Discussion ❌ Cancel Reply