CVE-2026-50212

MEDIUM WAF: Medium

CVSS 6.5 Published: 2026-06-04

CWE-400

Weak validation logic within device dissociation API routines allows a remote entity to forcefully unbind unrelated user endpoints, causing severe denial of service.

WAF Coverage Analysis

Uncontrolled Resource Consumption Medium WAF Coverage

OWASP: A05:2021 Security Misconfiguration

912xxx - DOS Protection

Affected Software

Vendor	Product	Version
acer	connect_m6e_5g_firmware	up to m6e_ai_1.00.000019

References

community.acer.com (Mitigation, Vendor Advisory)

Back to CVE Database