Acer PredatorSense Local Privilege Escalation Vulnerability

Vulnerability

A local privilege escalation vulnerability has been identified in Acer PredatorSense versions 3.00.3136 through 3.00.3196. The issue arises because the program exposes a Windows Named Pipe that, while intended to invoke internal functions via a custom protocol, is misconfigured. This flaw allows any authenticated local user to execute arbitrary code with NT AUTHORITY\SYSTEM privileges and to delete arbitrary files with SYSTEM privileges. Exploiting this vulnerability enables an attacker to execute code on the target system with elevated rights.

Impact

Exploitation of this vulnerability allows for local privilege escalation, enabling authenticated users to execute arbitrary code with SYSTEM privileges and delete files with the same elevated rights.

Added: May 8, 2026, 7:21 AM

Updated: May 8, 2026, 7:21 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

0.0

relevance

7.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

0.0

relevance

7.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Acer PredatorSense Local Privilege Escalation Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating