VYPR

Quick Access

by Acer

CVEs (2)

  • CVE-2022-24286Mar 8, 2022
    risk 0.00cvss epss 0.00

    Acer QuickAccess 2.01.300x before 2.01.3030 and 3.00.30xx before 3.00.3038 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority through a named pipe. In this case, the Named Pipe is also given Read and Write rights…

  • CVE-2019-18670Dec 17, 2019
    risk 0.00cvss epss 0.01

    In the Quick Access Service (QAAdminAgent.exe) in Acer Quick Access V2.01.3000 through 2.01.3027 and V3.00.3000 through V3.00.3008, a REGULAR user can load an arbitrary unsigned DLL into the signed service's process, which is running as NT AUTHORITY\SYSTEM. This is a DLL…