Loading market data...
← Back to CVE feed

CVE-2026-50226

UNKNOWN View on NVD ↗

Description

Fixed AES-128-CBC keys inside the AcerConnect OTA application let attackers forge authorization credentials for arbitrary IMEI numbers. This allows unauthorized actors to list catalog items and extract protected binaries from pre-signed cloud links.

Published: Jun 04, 2026 10:16 UTC Modified: Jun 04, 2026 15:10 UTC