aeon

This vulnerability affects Aeon, a vendor whose specific product details aren't widely established in public databases. The flaw is a local privilege escalation requiring user interaction but no authentication, delivering high impact across confidentiality, integrity, and availability with a CVSS score of 7.8. Security teams should monitor for patches expected by the June 2026 deadline and be alert for exploitation targeting local access scenarios where user interaction can be socially engineered.