CVE-2026-50209: CWE-732: Incorrect Permission Assignment for Critical Resource in Acer Connect M6E 5G Portable WiFi Router
CVE-2026-50209 is a critical vulnerability in the Acer Connect M6E 5G Portable WiFi Router where broadcast events permit malicious software to change the device's default Mobile Device Management (MDM) endpoint address. This flaw allows an attacker with limited privileges to redirect administrative control to an external entity. The vulnerability is classified under CWE-732, indicating incorrect permission assignment for a critical resource. The CVSS 4. 0 base score is 9. 3, reflecting high impact and exploitability. No official patch or remediation guidance is currently available from the vendor. There are no known exploits in the wild at this time. Users should monitor vendor advisories for updates and exercise caution with software that can trigger broadcast events on affected devices.
AI Analysis
Technical Summary
This vulnerability involves improper permission assignment in the Acer Connect M6E 5G Portable WiFi Router, specifically allowing broadcast events to overwrite the device's default MDM endpoint address. This misconfiguration enables an attacker with limited privileges to redirect administrative ownership to an external attacker, potentially compromising device management and control. The issue is tracked as CWE-732 and has a CVSS 4.0 score of 9.3, indicating critical severity. The vulnerability is not cloud-based, and no patch or official remediation level has been published by Acer as of the current data.
Potential Impact
An attacker with limited privileges on the device can exploit this vulnerability to change the MDM endpoint address, effectively transferring administrative control to an external attacker. This could lead to unauthorized device management, configuration changes, and potential compromise of the device's security posture. The high CVSS score reflects significant confidentiality, integrity, and availability impacts.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, users should restrict access to the device, avoid running untrusted software that can trigger broadcast events, and monitor for any unusual changes in device management settings.
CVE-2026-50209: CWE-732: Incorrect Permission Assignment for Critical Resource in Acer Connect M6E 5G Portable WiFi Router
Description
CVE-2026-50209 is a critical vulnerability in the Acer Connect M6E 5G Portable WiFi Router where broadcast events permit malicious software to change the device's default Mobile Device Management (MDM) endpoint address. This flaw allows an attacker with limited privileges to redirect administrative control to an external entity. The vulnerability is classified under CWE-732, indicating incorrect permission assignment for a critical resource. The CVSS 4. 0 base score is 9. 3, reflecting high impact and exploitability. No official patch or remediation guidance is currently available from the vendor. There are no known exploits in the wild at this time. Users should monitor vendor advisories for updates and exercise caution with software that can trigger broadcast events on affected devices.
CVSS v4.0
Score 9.3critical
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves improper permission assignment in the Acer Connect M6E 5G Portable WiFi Router, specifically allowing broadcast events to overwrite the device's default MDM endpoint address. This misconfiguration enables an attacker with limited privileges to redirect administrative ownership to an external attacker, potentially compromising device management and control. The issue is tracked as CWE-732 and has a CVSS 4.0 score of 9.3, indicating critical severity. The vulnerability is not cloud-based, and no patch or official remediation level has been published by Acer as of the current data.
Potential Impact
An attacker with limited privileges on the device can exploit this vulnerability to change the MDM endpoint address, effectively transferring administrative control to an external attacker. This could lead to unauthorized device management, configuration changes, and potential compromise of the device's security posture. The high CVSS score reflects significant confidentiality, integrity, and availability impacts.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, users should restrict access to the device, avoid running untrusted software that can trigger broadcast events, and monitor for any unusual changes in device management settings.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- Acer
- Date Reserved
- 2026-06-04T01:29:10.112Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a213befe29bf47b50851eab
Added to database: 6/4/2026, 8:48:47 AM
Last enriched: 6/4/2026, 9:03:39 AM
Last updated: 6/4/2026, 10:29:10 AM
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.