PT-2026-46165 · Acer · Connect M6E 5G Portable Wifi Router
Ta-Lun Yen
·
Published
2026-06-04
·
Updated
2026-06-04
·
CVE-2026-50213
CVSS v4.0
8.7
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
The account validation endpoint /v1/User/validate returns comprehensive user profile data sheets, which can be crawled by iterating predictable identification strings.
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Connect M6E 5G Portable Wifi Router