CNNVD-202602-883 Information

CNNVD ID

CNNVD-202602-883

Related CVE

CVE-2019-25285

• CNNVD Published: 2026-02-05

Description (Chinese)

ALPS ALPINE Pointing-device Controller是日本ALPS ALPINE公司的一个笔记本电脑重触摸板的控制软件。 ALPS ALPINE Pointing-device Controller 8.1202.1711.04版本存在代码问题漏洞，该漏洞源于ApHidMonitorService中未加引号的服务路径，可能导致本地攻击者执行代码并提升权限。

Description (English)

ALPS ALPINE Pointing-Device Controller is the control software for a computer graft board at ALPS ALPINE in Japan. Alps Alpine Pointing-Device Consortium version 8.102.711.04 has a code gap, which stems from service paths without quotation marks in ApHidMonitorService, which may lead to local assailants to enforce codes and enhance privileges.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

ALPS ALPINE

Published

2026-02-05

Last Modified

2026-02-24

References

https://www.alps.com/e/ https://www.exploit-db.com/exploits/47637 https://www.vulncheck.com/advisories/alps-pointing-device-controller-aphidmonitorservice-unquoted-service-path

Patch

https://www.alpsalpine.com/e/