NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-50226

Summary	Fixed AES-128-CBC keys inside the AcerConnect OTA application let attackers forge authorization credentials for arbitrary IMEI numbers. This allows unauthorized actors to list catalog items and extract protected binaries from pre-signed cloud links.
Publication Date	June 4, 2026, 7:16 p.m.
Registration Date	June 5, 2026, 4:10 a.m.
Last Update	June 5, 2026, 12:10 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://community.acer.com/en/kb/articles/19707	8fc372e3-d9c5-46e4-9410-38469745c639

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-321	ハードコードされた暗号鍵の使用	https://cwe.mitre.org/data/definitions/321.html