ByteOS Network

NVD Vulnerability Details :

CVE-2026-4582

Deferred

Source-cna@vuldb.com

Published At-23 Mar, 2026 | 10:16

Updated At-24 Apr, 2026 | 16:32

A security vulnerability has been detected in Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N. Affected by this vulnerability is an unknown functionality of the component Bluetooth. Such manipulation leads to missing authentication. The attack must be carried out from within the local network. Attacks of this nature are highly complex. The exploitation appears to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	2.3	LOW	CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Secondary	3.1	5.0	MEDIUM	CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Secondary	2.0	4.3	MEDIUM	AV:A/AC:H/Au:N/C:P/I:P/A:P

Type: Secondary

Version: 4.0

Base score: 2.3

Base severity: LOW

Vector:

CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Type: Secondary

Version: 3.1

Base score: 5.0

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Type: Secondary

Version: 2.0

Base score: 4.3

Base severity: MEDIUM

Vector:

AV:A/AC:H/Au:N/C:P/I:P/A:P

Weaknesses

CWE ID	Type	Source
CWE-287	Secondary	cna@vuldb.com
CWE-306	Secondary	cna@vuldb.com

CWE ID: CWE-287

Type: Secondary

Source: cna@vuldb.com

CWE ID: CWE-306

Type: Secondary

Source: cna@vuldb.com

References

Hyperlink	Source	Resource
https://github.com/Davim09/m6plusexploit/blob/main/docs/CVE-1-Authentication.md	cna@vuldb.com	N/A
https://vuldb.com/submit/775433	cna@vuldb.com	N/A
https://vuldb.com/vuln/352419	cna@vuldb.com	N/A
https://vuldb.com/vuln/352419/cti	cna@vuldb.com	N/A