5 matches found
Exploit for CVE-2026-9490
CVE ID: CVE-2026-9490 Researcher: Vo Duc Thang ugvxb...
CVE-2026-9490
Affected product: Acer Care Center (ACC Svc). The vulnerability arises because the ACCSvc service creates a Named Pipe with a weak security descriptor, permitting an authenticated local user to connect and send a crafted message (type 0x03). This can trigger the service to crash with exit code 10...
PT-2026-43021
A security vulnerability has been identified in Acer Care Center where the ACCSvc service creates a Named Pipe with a weak Security Descriptor. This vulnerability allows an authenticated local user to connect and send a specially crafted message message type 0x03 to the pipe, causing the service ...
Privilege escalation
Acer Care Center 4.00.30xx before 4.00.3042 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority called ACCsvc through a named pipe. In this case, the Named Pipe is also given Read and Write rights to the general user. In addition,...
CVE-2022-24285
CVE-2022-24285 affects Acer Care Center 4.00.30xx prior to 4.00.3042. The issue arises when a user process communicates with the ACCsvc System Privileges service via a named pipe that is granted Read/Write rights to general users, and the service does not authenticate the user. A thread may trigg...