CVE Watchtower ← Back to CVE ListCVE-2026-49197NVDVulnerability SummaryWeb endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests when Base64 decoding fails.Severity LevelUNKNOWNPublished DateMay 29, 2026Last ModifiedMay 29, 2026Exploitation Status????EPSS Score (30-Day)0.06%ProbabilityRoot Weakness (CWE)N/AExternal Referenceshttps://community.acer.com/en/kb/articles/19672