PT-2026-46176 · Acer · Connect M6E 5G Portable Wifi Router
Ta-Lun Yen
·
Published
2026-06-04
·
Updated
2026-06-04
·
CVE-2026-50224
CVSS v4.0
6.9
Medium
| Vector | AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
The web administration panel binds broadly to the public IPv6 address space on port [::]:8080 without default firewall limits, making internal API endpoints reachable over the WAN.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Connect M6E 5G Portable Wifi Router