CVE-2026-4583 | Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N Bluetooth authentication replay

A vulnerability marked as critical has been reported in Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N. Affected by this issue is some unknown functionality of the component Bluetooth Handler. Performing a manipulation results in authentication bypass by capture-replay.

This vulnerability is cataloged as CVE-2026-4583. The attack must originate from the local network. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-4583 | Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N Bluetooth authentication replay

Post correlati

CVE-2023-31352 | AMD EPYC 9004 Processors/EPYC Embedded 9004 SEV Firmware memory corruption

CVE-2025-47437 | LiteSpeed Cache Plugin up to 7.0.1 on WordPress server-side request forgery

CVE-2024-47208 | Apache OFBiz up to 18.12.16 Groovy Expression server-side request forgery

CVE-2025-47410 | Apache Geode up to 1.15.1 REST API cross-site request forgery