CVE-2026-31386 - OpenLiteSpeed and LSWS Enterprise provided by LiteSpeed Technologies contain an OS command injection vulnerability. An arbitrary OS command may be executed by an attacker with the administrative privilege.
Published: March 16, 2026; 10:19:33 AM -0400

CVE-2026-50076 - Deserialization of Untrusted Data in the Java replace-resolve path in Apache Fory fory-core Java SDK before 1.1.0 on Java/JVM platforms allows a remote attacker to bypass class registration, TypeChecker, and DisallowedList checks and invoke classp... read CVE-2026-50076
Published: June 04, 2026; 1:16:33 PM -0400

CVE-2026-10864 - A vulnerability in the MISP dashboard widgets allowed an authenticated user to manipulate the fields option and influence which fields were returned by the New Users and New Organisations widgets. In some cases, requesting a field set that became ... read CVE-2026-10864
Published: June 04, 2026; 11:16:49 AM -0400

V3.1: 4.3 MEDIUM

CVE-2026-50224 - The web administration panel binds broadly to the public IPv6 address space on port [::]:8080 without default firewall limits, making internal API endpoints reachable over the WAN.
Published: June 04, 2026; 6:16:40 AM -0400

V3.1: 4.9 MEDIUM

CVE-2026-50225 - The registration path /v1/account/register provides no bot mitigation mechanisms, allowing malicious automated systems to flood the database.
Published: June 04, 2026; 6:16:40 AM -0400

V3.1: 9.1 CRITICAL

CVE-2026-50226 - Fixed AES-128-CBC keys inside the AcerConnect OTA application let attackers forge authorization credentials for arbitrary IMEI numbers. This allows unauthorized actors to list catalog items and extract protected binaries from pre-signed cloud links.
Published: June 04, 2026; 6:16:40 AM -0400

V3.1: 5.3 MEDIUM

CVE-2026-50214 - The /v1/Plan service relies entirely on a shared global API token for full administrative management, allowing arbitrary creation of zero-cost network access plans.
Published: June 04, 2026; 6:16:39 AM -0400

V3.1: 9.8 CRITICAL

CVE-2017-7563 - In ARM Trusted Firmware 1.3, RO memory is always executable at AArch64 Secure EL1, allowing attackers to bypass the MT_EXECUTE_NEVER protection mechanism. This issue occurs because of inconsistency in the number of execute-never bits (one bit vers... read CVE-2017-7563
Published: June 07, 2017; 11:29:00 AM -0400

V3.1: 8.1 HIGH
V2.0: 6.8 MEDIUM

CVE-2017-7564 - In ARM Trusted Firmware through 1.3, the secure self-hosted invasive debug interface allows normal world attackers to cause a denial of service (secure world panic) via vectors involving debug exceptions and debug registers.
Published: June 07, 2017; 11:29:00 AM -0400

V3.1: 7.5 HIGH
V2.0: 5.0 MEDIUM

CVE-2021-32032 - In Trusted Firmware-M through 1.3.0, cleaning up the memory allocated for a multi-part cryptographic operation (in the event of a failure) can prevent the abort() operation in the associated cryptographic library from freeing internal resources, c... read CVE-2021-32032
Published: May 21, 2021; 12:15:08 AM -0400

V3.1: 7.5 HIGH
V2.0: 5.0 MEDIUM

CVE-2026-49201 - The upload.cgi binary, responsible for processing device backups, contains a hardcoded AES encryption key. This allows an attacker to decrypt, modify, and re-encrypt system backups, facilitating persistent backdoor injection.
Published: May 29, 2026; 7:16:17 AM -0400

V3.1: 9.8 CRITICAL

CVE-2026-49198 - Improper access control in the MQTT broker allows wildcard topic subscriptions, exposing all MQTT traffic to unauthorized actors.
Published: May 29, 2026; 5:16:18 AM -0400

V3.1: 4.9 MEDIUM

CVE-2026-49197 - Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests when Base64 decoding fails.
Published: May 29, 2026; 5:16:17 AM -0400

V3.1: 9.8 CRITICAL

CVE-2026-49196 - The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arbitrary shell commands.
Published: May 29, 2026; 5:16:17 AM -0400

V3.1: 7.2 HIGH

CVE-2026-49195 - Unauthenticated Debug Service. The /sbin/mtk_dut binary is exposed on TCP port 9000 without authentication, allowing any LAN-based attacker to execute arbitrary UCC commands.
Published: May 29, 2026; 5:16:17 AM -0400

V3.1: 8.8 HIGH

CVE-2026-49200 - The acer_cgi.log file in the device firmware is accessible without authentication via the web interface. This file contains cleartext login credentials (for web and Telnet), leading to unauthorized system access.
Published: May 29, 2026; 5:16:18 AM -0400

V3.1: 9.8 CRITICAL

CVE-2026-3109 - Mattermost Plugins versions <=11.4 10.11.11.0 fail to validate webhook request timestamps which allows an attacker to corrupt Zoom meeting state in Mattermost via replayed webhook requests. Mattermost Advisory ID: MMSA-2026-00584
Published: March 26, 2026; 1:16:41 PM -0400

CVE-2026-3116 - Mattermost Plugins versions <=11.4 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to validate incoming request size which allows an authenticated attacker to cause service disruption via the webhook endpoint. Mattermost Advisory ID: MMSA-2026-00589
Published: March 26, 2026; 1:16:42 PM -0400

CVE-2026-4482 - The installer certificate files in the …/bootstrap/common/ssl folder do not seem to have restricted permissions on Windows systems (users have read and execute access). For the client.key file in particular, this could potentially lead to exploits... read CVE-2026-4482
Published: April 10, 2026; 1:16:04 AM -0400

V3.1: 5.5 MEDIUM

CVE-2026-28704 - Emocheck insecurely loads Dynamic Link Libraries (DLLs). If a crafted DLL file is placed to the same directory, an arbitrary code may be executed with the privilege of the user invoking EmoCheck.
Published: April 10, 2026; 3:16:21 AM -0400