ГлавнаяУязвимости → CVE-2026-49188
9.8критическая

CVE-2026-49188

Описание

The ai_cmd utility executes with full root permissions. It pipes socket inputs directly to popen(), paving the way for unauthenticated users to execute arbitrary root commands.

Затрагиваемое ПО
Acer Connect m6e 5g firmwareAcer Connect m6e 5g
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://community.acer.com/en/kb/articles/19707