CNNVD-202601-2787 Information

CNNVD ID

CNNVD-202601-2787

Related CVE

CVE-2021-47825

• CNNVD Published: 2026-01-16

Description (Chinese)

Acer Updater Service是中国台湾宏碁（Acer）公司的一个软件更新工具。 Acer Updater Service 1.2.3500.0版本存在代码问题漏洞，该漏洞源于服务路径存在未加引号的服务路径，可能导致权限提升。

Description (English)

Acer Updater Service is a software updating tool for the Chinese company Acer. Acer Updater Service 1.2.3.50.0 has a code gap, which stems from the service path with unquoted service paths, which may lead to increased privileges.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

宏碁

Published

2026-01-16

Last Modified

2026-02-24

References

https://www.acer.com/ac/en/US/content/home https://www.exploit-db.com/exploits/49890 https://www.vulncheck.com/advisories/acer-updater-service-updaterserviceexe-unquoted-service-path

Patch

https://www.acer.com/us-en/