Description
This vulnerability exists in the Atom 3x Projector due to improper exposure of the Android Debug Bridge (ADB) service over the local network without authentication or access controls. An unauthenticated attacker on the same network can exploit this vulnerability to obtain root-level access, leading to complete compromise of the targeted device.
Published: 2026-04-10
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: Root-Level Device Compromise
Action: Immediate Patch
AI Analysis

Impact

The Atom 3x Projector unintentionally exposes the Android Debug Bridge service over the local network without any authentication or access controls. An attacker who can reach the device on the same local network can connect to this service and execute commands with full system privileges, effectively gaining root access to the device. This allows the attacker to modify, delete, or exfiltrate any data stored on the projector, install additional malicious software, or use the compromised device as a pivot point for further attacks on the surrounding network.

Affected Systems

All models of the EGate Atom 3X Projector are affected, regardless of firmware version. The advisory does not specify a particular revision, so any device running the current SKU should be considered at risk until an upgrade is applied.

Risk and Exploitability

The vulnerability receives a CVSS score of 8.7, indicating high severity. No EPSS data is available and the flaw is not listed in the CISA KEV catalog. The attack path is simple: any unauthenticated host on the same local network can scan for the standard ADB port, typically 5555, and establish a connection that grants full root control of the projector.

Generated by OpenCVE AI on April 10, 2026 at 13:51 UTC.

Remediation

Vendor Solution

Upgrade Atom 3x Projector to latest version

OpenCVE Recommended Actions

  • Upgrade Atom 3x Projector to the latest version
  • Disable or restrict the Android Debug Bridge service on the device
  • Block or firewall TCP port 5555 from the local network
  • Verify that the upgrade has been applied and the service is no longer exposed
  • Monitor network traffic and device logs for unauthorized ADB connections

Generated by OpenCVE AI on April 10, 2026 at 13:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 10 Apr 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 10 Apr 2026 12:00:00 +0000

Type Values Removed Values Added
Description This vulnerability exists in the Atom 3x Projector due to improper exposure of the Android Debug Bridge (ADB) service over the local network without authentication or access controls. An unauthenticated attacker on the same network can exploit this vulnerability to obtain root-level access, leading to complete compromise of the targeted device.
Title Security Misconfiguration Vulnerability in Atom 3x Projector
First Time appeared Egate
Egate atom 3x Projector
Weaknesses CWE-306
CPEs cpe:2.3:a:egate:atom_3x_projector:*:*:*:*:*:*:*:*
Vendors & Products Egate
Egate atom 3x Projector
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Egate Atom 3x Projector
cve-icon MITRE

Status: PUBLISHED

Assigner: CERT-In

Published:

Updated: 2026-04-10T12:42:10.282Z

Reserved: 2026-04-08T08:14:40.117Z

Link: CVE-2026-5777

cve-icon Vulnrichment

Updated: 2026-04-10T12:42:06.780Z

cve-icon NVD

Status : Deferred

Published: 2026-04-10T12:16:04.480

Modified: 2026-05-19T15:24:16.840

Link: CVE-2026-5777

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-13T13:06:06Z

Weaknesses