CVE-2026-5777
CWE-306Published: April 10, 2026· Updated: Apr 13, 2026
Official Description
This vulnerability exists in the Atom 3x Projector due to improper exposure of the Android Debug Bridge (ADB) service over the local network without authentication or access controls. An unauthenticated attacker on the same network can exploit this vulnerability to obtain root-level access, leading to complete compromise of the targeted device.
Technical Analysis
CVE-2026-5777 requires adjacent network access, limiting remote exploitation but still posing risk in shared or local network environments.
The vulnerability requires no privileges and no user interaction, making it a prime target for automated exploitation campaigns and worm-like propagation.
A proof-of-concept (PoC) exploit exists for CVE-2026-5777. While not yet confirmed in active campaigns, the availability of PoC code increases exploitation risk substantially.
CVSS v3.1 Vector Breakdown
Exploit & PoC Resources
All References (1)
Quick Facts
Related CVEs (CWE-306)
Recommended Actions
- →Apply vendor patches immediately
- →Monitor CVE-2026-5777 in threat intel feeds
- →Review IDS/IPS signatures for exploitation attempts