VYPR

Care Center

by Acer

CVEs (3)

  • CVE-2022-24285HigMar 10, 2022
    risk 0.51cvss 7.8epss 0.00

    Acer Care Center 4.00.30xx before 4.00.3042 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority called ACCsvc through a named pipe. In this case, the Named Pipe is also given Read and Write rights to the general…

  • CVE-2021-45975HigJan 26, 2022
    risk 0.51cvss 7.8epss 0.01

    In ListCheck.exe in Acer Care Center 4.x before 4.00.3038, a vulnerability in the loading mechanism of Windows DLLs could allow a local attacker to perform a DLL hijacking attack. This vulnerability is due to incorrect handling of directory search paths at run time. An attacker…

  • CVE-2026-9490MedMay 25, 2026
    risk 0.36cvss 5.5epss 0.00

    A security vulnerability has been identified in Acer Care Center where the ACCSvc service creates a Named Pipe with a weak Security Descriptor. This vulnerability allows an authenticated local user to connect and send a specially crafted message (message type 0x03) to the pipe,…