CNNVD-202601-2789 Information

CNNVD ID

CNNVD-202601-2789

Related CVE

CVE-2021-47823

• CNNVD Published: 2026-01-16

Description (Chinese)

Acer ePowerSvc是中国台湾宏碁（Acer）公司的一个电源管理后台服务。 Acer ePowerSvc 6.0.3008.0版本存在代码问题漏洞，该漏洞源于服务配置存在未加引号的服务路径，可能导致权限提升。

Description (English)

Acer ePowerSvc is a power-management back-office service of the Chinese company Acer. Acer ePowerSvc version 6.03.00.00.0 has a code gap, which stems from the service configuration with unquoted service paths, which may lead to enhanced privileges.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

宏碁

Published

2026-01-16

Last Modified

2026-02-24

References

https://www.acer.com https://www.exploit-db.com/exploits/49900 https://www.vulncheck.com/advisories/epowersvc-epowersvcexe-unquoted-service-path

Patch

https://www.acer.com/us-en/