Aggregator

Новая атака работает даже при включённом Защитнике

德国巴伐利亚州数字事务部正式宣布取消与微软的合同，该合同将在五年内支出近 10 亿欧元。巴伐利亚州将转向采用开源软件。州财政部长 Albert Füracker 主张在现有合同基础上寻求折扣，而数字部长 Fabian Mehring 则力主采用开源软件。Mehring 表示，转向开源软件将确保在危机时期服务的持续使用，保护巴伐利亚州免受价格上涨的影响，并优先保障数据安全。巴伐利亚州转向开源软件是欧洲更广泛趋势的一部分，欧洲各地的地方和联邦政府都在逐步摆脱对微软和其它美国技术的依赖。

A vulnerability identified as critical has been detected in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. The impacted element is an unknown function of the component APK Resource File Handler. Performing a manipulation results in information disclosure. This vulnerability is known as CVE-2026-49187. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability labeled as critical has been found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. This affects the function popen of the component ai_cmd Utility. Executing a manipulation can lead to active debug code. This vulnerability is handled as CVE-2026-49188. The attack can only be done within the local network. There is not any exploit available.

A vulnerability categorized as critical has been discovered in Red Hat Multicluster Engine for Kubernetes, Enterprise Linux, JBoss Enterprise Application Platform Expansion Pack and OpenShift Container Platform. The affected element is an unknown function of the component NetworkManager. Such manipulation leads to os command injection. This vulnerability is traded as CVE-2026-10805. An attack has to be approached locally. There is no exploit available.

A vulnerability marked as critical has been reported in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. This impacts an unknown function of the component Core Broadcast Receiver. The manipulation leads to improper privilege management. This vulnerability is uniquely identified as CVE-2026-49189. Local access is required to approach this attack. No exploit exists.

A vulnerability identified as problematic has been detected in crypto-x509 up to 1.25.10/1.26.3 on Go. This vulnerability affects the function VerifyHostname. This manipulation causes inefficient algorithmic complexity. This vulnerability is handled as CVE-2026-27145. The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.

A vulnerability was found in mime up to 1.25.10/1.26.3 on Go and classified as problematic. Affected by this issue is some unknown functionality of the component Header Handler. Executing a manipulation can lead to inefficient algorithmic complexity. This vulnerability is registered as CVE-2026-42504. It is possible to launch the attack remotely. No exploit is available. It is suggested to upgrade the affected component.

欧盟周三公布了 European Technological Sovereignty Package，旨在加强科技主权减少依赖美国科技公司。微软遵守美国总统特朗普的命令关闭国际刑事法院首席检察官账号给整个欧洲敲响了警钟。最新计划旨在扶持欧洲本土企业，要求高度敏感领域的公共服务不能使用外国科技公司的服务。欧盟委员会要求各成员国对其依赖的每一项数字服务进行“主权风险评估”，评估内容包括外国控制、敏感数据的潜在访问权限以及运营中断的风险。欧盟委员会主席 Ursula von der Leyen 表示，“我们不能依赖他人的技术维持医院运转、电网稳定运行和服务安全。这关乎保护我们的公民、捍卫我们的利益以及做出我们自己的选择。”

Forescout VP of security intelligence, Rik Ferguson, warns that Q-day is fast approaching

A vulnerability was found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. It has been rated as critical. This affects an unknown function of the component Config Handler. Performing a manipulation results in os command injection. This vulnerability is reported as CVE-2026-50206. The attacker must have access to the local network to execute the attack. No exploit exists.

A vulnerability was found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. It has been declared as critical. The impacted element is an unknown function. Such manipulation leads to sensitive information in log files. This vulnerability is documented as CVE-2026-50205. The attack can be executed remotely. There is not any exploit available.

A vulnerability was found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. It has been classified as critical. The affected element is an unknown function. This manipulation causes hard-coded credentials. This vulnerability is registered as CVE-2026-49204. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.

A vulnerability was found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019 and classified as critical. Impacted is an unknown function. The manipulation results in improper authentication. This vulnerability is cataloged as CVE-2026-49194. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019 and classified as critical. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to information disclosure. This vulnerability is listed as CVE-2026-49193. The attack may be initiated remotely. There is no available exploit.

A vulnerability, which was classified as critical, was found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. This vulnerability affects unknown code of the component Summary Service Endpoint. Executing a manipulation can lead to authorization bypass. This vulnerability is tracked as CVE-2026-49192. The attack can be launched remotely. No exploit exists.

A vulnerability, which was classified as critical, has been found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. This affects an unknown part of the component API Endpoint. Performing a manipulation results in improper authentication. This vulnerability is identified as CVE-2026-49203. The attack can only be performed from the local network. There is not any exploit available.

A vulnerability classified as critical was found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. Affected by this issue is some unknown functionality. Such manipulation leads to improper authentication. This vulnerability is referenced as CVE-2026-49202. It is possible to launch the attack remotely. No exploit is available.

A vulnerability classified as critical has been found in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. Affected by this vulnerability is an unknown functionality. This manipulation causes improper authentication. The identification of this vulnerability is CVE-2026-49191. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability described as critical has been identified in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019. Affected is an unknown function. The manipulation results in os command injection. This vulnerability was named CVE-2026-49190. The attack may be performed from remote. There is no available exploit.