RCE in Acer Predator Connect W6x

CVE-2026-49196

The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arbitrary shell commands.

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.001 (26.1th percentile) — read the EPSS interpretation.