CVE-2026-9489 PUBLISHED

NitroSense V3: Local Privilege Escalation (LPE) vulnerability

Assigner: Acer
Reserved: 25.05.2026 Published: 25.05.2026 Updated: 25.05.2026

NitroSense 3.x before 3.01.3052 contains Local Privilege Escalation (LPE) vulnerability.The program exposes a Windows Named Pipe that uses a custom protocol to invoke internal functions. However, this Named Pipe is misconfigured, allowing any authenticated local user to execute arbitrary code with NT AUTHORITY\SYSTEM privileges and to delete arbitrary files with SYSTEM privileges. By leveraging this, an attacker can execute arbitrary code on the target system with elevated privileges.

Metrics

CVSS 4.0

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score: 8.5

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Local	Confidentiality	High	Confidentiality	None
Attack Complexity	Low	Integrity	High	Integrity	None
Attack Requirements	None	Availability	High	Availability	None
Privileges Required	Low
User Interaction	None

CVSS 4.0

Product Status

Vendor	Acer
Product	NitrorSense V3
Versions	Default: unaffected affected from 3.01.3001 to 3.01.3052 (incl.)

Solutions

Please update for version 3.01.3056.

Credits

Artem Domarev finder

References

https://community.acer.com/en/kb/articles/19652

Problem Types

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE
CWE-269: Improper Privilege Management CWE
CWE-284: Improper Access Control CWE
CWE-732: Incorrect Permission Assignment for Critical Resource CWE

Impacts

CAPEC-69 Target Programs with Elevated Privileges