8.8

CVE-2026-50205

Plaintext Log Credential Leakage

System log files output unencrypted SMTP server authentication passwords alongside sensitive employee corporate identification data.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AcerConnect M6e 5g Firmware Version <= m6e_ai_1.00.000019
   AcerConnect M6e 5g Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.24% 0.145
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.2 3.9 4.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
8fc372e3-d9c5-46e4-9410-38469745c639 8.8 0 0
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CWE-532 Insertion of Sensitive Information into Log File

The product writes sensitive information to a log file.

https://community.acer.com/en/kb/articles/19707
Vendor Advisory
Mitigation