{"vulnerability": "cve-2026-4919", "sightings": [{"uuid": "4c03c1a0-bb80-4273-8e4e-1d0957159509", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49196", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmyh6rpkeo2i", "content": "CVE-2026-49196 - Predator Connect W6x: Web Interface Command Injection\nCVE ID : CVE-2026-49196\n \n Published : May 29, 2026, 9:16 a.m. | 1\u00a0hour, 54\u00a0minutes ago\n \n Description : The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and executi...", "creation_timestamp": "2026-05-29T11:38:44.376606Z"}, {"uuid": "3f84fe66-0f4e-405f-839d-0976a65a4dad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49199", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmyheqtu2j2i", "content": "CVE-2026-49199 - Predator Connect W6x: RCE via MQTT\nCVE ID : CVE-2026-49199\n \n Published : May 29, 2026, 9:16 a.m. | 1\u00a0hour, 54\u00a0minutes ago\n \n Description : Crafted MQTT messages can trigger command injection, resulting in root-level code execution on the target device.\n \n Sev...", "creation_timestamp": "2026-05-29T11:42:05.895523Z"}, {"uuid": "e471c243-49a5-4ab7-a8f2-65479706d685", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49197", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmyhlin4q322", "content": "CVE-2026-49197 - Predator Connect W6x: Improper Authentication\nCVE ID : CVE-2026-49197\n \n Published : May 29, 2026, 9:16 a.m. | 1\u00a0hour, 54\u00a0minutes ago\n \n Description : Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to...", "creation_timestamp": "2026-05-29T11:45:51.311069Z"}, {"uuid": "4f64efc9-851d-40c3-8f49-f916c01c2315", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49195", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmyht6ixjo2w", "content": "CVE-2026-49195 - Predator Connect W6x: unauthenticated Debug Service\nCVE ID : CVE-2026-49195\n \n Published : May 29, 2026, 9:16 a.m. | 1\u00a0hour, 54\u00a0minutes ago\n \n Description : Unauthenticated Debug Service. The /sbin/mtk_dut binary is exposed on TCP port 9000 without authenticat...", "creation_timestamp": "2026-05-29T11:50:08.907408Z"}, {"uuid": "44d43d0c-40bb-4444-ae37-33ee9d644dfb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49198", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmyj7xvhmi2d", "content": "CVE-2026-49198 - Predator Connect W6x: MQTT Broker Access Control\nCVE ID : CVE-2026-49198\n \n Published : May 29, 2026, 9:16 a.m. | 1\u00a0hour, 54\u00a0minutes ago\n \n Description : Improper access control in the MQTT broker allows wildcard topic subscriptions, exposing all MQTT traffic ...", "creation_timestamp": "2026-05-29T12:15:11.850984Z"}]}