A vulnerability described as critical has been identified in Acer Connect M6E 5G Portable WiFi Router up to M6E_AI_1.00.000019 . Affected is an unknown function. The manipulation results in os command injection. This vulnerability was named CVE-2026-49190 . The attack may be performed from remote. There is no available exploit.