CVE-2021-47823 ePowerSvc 6.0.3008.0 - 'ePowerSvc.exe' Unquoted Service Path

Acer ePowerSvc 6.0.3008.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with LocalSystem...

CVE-2021-47823

Acer ePowerSvc 6.0.3008.0 contains an unquoted service path vulnerability in its service configuration. The unquoted path could allow a local attacker to inject and execute code with LocalSystem privileges during service startup. Reported impact includes potential for full local privilege escalat...

CVE-2021-47823

Acer ePowerSvc 6.0.3008.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with LocalSystem...

PT-2026-3279

Acer ePowerSvc 6.0.3008.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with LocalSystem...

Acer ePowerSvc code issue vulnerability

Acer ePowerSvc is a power management backend service provided by Acer, a company based in Taiwan, China. Version 6.0.3008.0 of Acer ePowerSvc contains a code vulnerability. This vulnerability stems from service configuration paths that lack quotes, which may lead to privilege escalation...