CVE 8.5 HIGH

VPN Command Injection Vulnerability_CVE-2026-50206

June 4, 2026 invoker category_cve

8.5 / 10

HIGH

CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Incoming VPN network profile settings fail to process special characters safely, enabling command injection via malicious config files.

AI Analysis

Command injection vulnerability in Acer Connect M6E 5G Portable WiFi Router via malicious config files

Basic Information

ID CVE-2026-50206

Source Acer

Published Jun 4, 2026 at 06:46

Affected Product

Vendor Acer

Product Connect M6E 5G Portable WiFi Router

Version *

Affected Versions Acer Connect M6E 5G Portable WiFi Router *

CWE Classification

CWE-78

AI Assessment

AI Score 8.5 / 10

AI Severity High

Vendor Acer

Product Connect M6E 5G Portable WiFi Router

Version *

References

community.acer.com /en/kb/articles/19707

{
    "lastseen": "",
    "description": "Incoming VPN network profile settings fail to process special characters safely, enabling command injection via malicious config files.",
    "published": "2026-06-04T06:46:48.114Z",
    "modified": "2026-06-04T06:46:48.114Z",
    "type": "cve",
    "title": "VPN Command Injection Vulnerability",
    "source": "Acer",
    "references": "https://community.acer.com/en/kb/articles/19707",
    "id": "CVE-2026-50206",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "Acer Connect M6E 5G Portable WiFi Router *",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Connect M6E 5G Portable WiFi Router",
    "version": "*",
    "vendor": "Acer",
    "ai_description": "Command injection vulnerability in Acer Connect M6E 5G Portable WiFi Router via malicious config files",
    "ai_severity": "High",
    "ai_vendor": "Acer",
    "ai_product": "Connect M6E 5G Portable WiFi Router",
    "ai_version": "*",
    "ai_score": 8.5
}

💭 Join the Security Discussion ❌ Cancel Reply