The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec(), allowing command/instruction injection.
The FieldX MDM adb messaging topic passes unverified payloads directly to the Runtime.exec() function. Lack of input validation and data sanitization enables an attacker to embed arbitrary system commands in the payload, which will be executed by the process with application privileges. The attack can be conducted remotely, without authentication and without any interaction from the device user.
An attacker can remotely execute arbitrary system commands on the device (RCE), potentially leading to complete device takeover and compromise of confidentiality, integrity, and availability of both the device itself and connected systems.
Apply patches available from the manufacturer in accordance with references (https://community.acer.com/en/kb/articles/19707)
Acer Connect M6E 5G and Acer Connect M6E 5G Firmware software — specific versions indicated in manufacturer references
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XAcer Connect M6e 5g
HWAcerwszystkie wersjeAcer Connect M6e 5g Firmware
OSAcer≤ m6e_ai_1.00.000019
Related vulnerabilities
Acer Connect M6E 5G — pominięcie uwierzytelnienia przez procedurę debugowania
Acer Connect M6E 5G: wyłączona walidacja TLS i zakodowane klucze DES umożliwiają MITM
Acer Connect M6E 5G — hardkodowane klucze API w M3WebServer (Auth Bypass)
Command injection w Acer Connect M6E 5G — nieautoryzowane wykonanie poleceń
Acer Connect M6E 5G – przejęcie kontroli MDM przez broadcast event