2 matches found
CVE-2022-24285
Acer Care Center 4.00.30xx before 4.00.3042 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority called ACCsvc through a named pipe. In this case, the Named Pipe is also given Read and Write rights to the general user. In addition,...
CVE-2022-24285
CVE-2022-24285 affects Acer Care Center 4.00.30xx prior to 4.00.3042. The issue arises when a user process communicates with the ACCsvc System Privileges service via a named pipe that is granted Read/Write rights to general users, and the service does not authenticate the user. A thread may trigg...