Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests when Base64 decoding fails.
The authentication mechanism does not block HTTP requests when Base64 decoding of the Authorization header value fails — instead of rejecting the invalid request, the endpoint passes it through as authenticated. A network attacker, without required permissions and without user interaction, can send a crafted HTTP request with an invalid or deliberately corrupted Authorization header, thereby bypassing the entire access control layer (CWE-287: Improper Authentication).
An unauthenticated remote attacker can gain full access to protected resources and application functions, potentially leading to device takeover, data breach, and violation of system integrity and associated resources.
Apply patches available from the manufacturer in accordance with references published by Acer at https://community.acer.com/en/kb/articles/19672
Web endpoints intended for the Acer Connect application — exact product versions indicated in manufacturer references (https://community.acer.com/en/kb/articles/19672)
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XAcer Predator Connect W6x
HWAcerwszystkie wersjeAcer Predator Connect W6x Firmware
OSAcer≤ w6x_gbl_2.00.000005
Related vulnerabilities
Command injection przez MQTT umożliwia wykonanie kodu z uprawnieniami root
Unauthenticated Debug Service. The /sbin/mtk_dut binary is exposed on TCP port 9000 without authentication, al...
The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arb...
Improper access control in the MQTT broker allows wildcard topic subscriptions, exposing all MQTT traffic to u...
Command injection w Acer Connect M6E 5G via FieldX MDM adb messaging