2 matches found
CVE-2022-24286
Acer QuickAccess 2.01.300x before 2.01.3030 and 3.00.30xx before 3.00.3038 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority through a named pipe. In this case, the Named Pipe is also given Read and Write rights to the general...
CVE-2022-24286
CVE-2022-24286 concerns Acer QuickAccess vulnerable versions 2.01.300x–2.01.3030 and 3.00.30xx–3.00.3038. The root cause is a local privilege escalation via a named pipe: a user process communicates with a system-privileged service, and the pipe is granted read/write rights to ordinary users whil...