CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-49188

The ai_cmd utility executes with full root permissions. It pipes socket inputs directly to popen(), paving the way for unauthenticated users to execute arbitrary root commands.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.9%

CVSS Severity

CVSS v3 Score 9.8

References

https://community.acer.com/en/kb/articles/19707

Products affected by CVE-2026-49188

Acer » Connect M6e 5g » Version: N/A

cpe:2.3:h:acer:connect_m6e_5g:-
Acer » Connect M6e 5g Firmware » Version: Any

cpe:2.3:o:acer:connect_m6e_5g_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-49188

Products

Pricing

Contact Us