CVE-2026-49194
Received Received - Intake
Debugging Routine Bypass Leads to Shell Access in Device

Publication date: 2026-06-04

Last updated on: 2026-06-04

Assigner: 8fc372e3-d9c5-46e4-9410-38469745c639

Description
The debugging routine SCREEN_CLICK(5053) enables a connection to skip the standard device login prompt entirely and directly enter an interactive shell interface.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-04
Last Modified
2026-06-04
Generated
2026-06-04
AI Q&A
2026-06-04
EPSS Evaluated
N/A
NVD
CVE-2026-49194
EUVD
EUVD-2026-34213
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-287 When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability involves a debugging routine named SCREEN_CLICK(5053) that allows an attacker to bypass the standard device login prompt entirely. By exploiting this routine, the attacker can directly access an interactive shell interface without needing to authenticate.


How can this vulnerability impact me? :

The vulnerability can have a severe impact because it allows unauthorized users to gain direct shell access to the device without any login credentials. This can lead to full control over the device, potentially enabling data theft, system manipulation, or further attacks within the network.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart