CVE-2026-49186
Vulnerability Description
The local MQTT broker does not enforce topic-level Access Control Lists (ACLs). This allows any client to subscribe using wildcard characters (# or +) to enumerate hidden network devices or publish rogue control commands.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-287
Source
NVD
Vendor
Acer
Product
Connect M6E 5G Portable WiFi Router
Discussion (0)
Add Comment
No comments yet. Be the first!