CVE-2026-9489

UNKNOWN 0.0

NitroSense V3: Local Privilege Escalation (LPE) vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

6th

NitroSense 3.x before 3.01.3052 contains Local Privilege Escalation (LPE) vulnerability.The program exposes a Windows Named Pipe that uses a custom protocol to invoke internal functions. However, this Named Pipe is misconfigured, allowing any authenticated local user to execute arbitrary code with NT AUTHORITY\SYSTEM privileges and to delete arbitrary files with SYSTEM privileges. By leveraging this, an attacker can execute arbitrary code on the target system with elevated privileges.

CWE	CWE-22 CWE-269 CWE-284 CWE-732
Vendor	acer
Product	nitrorsense v3
Published	May 25, 2026
Last Updated	May 26, 2026

Stay Ahead of the Next One

Get instant alerts for acer nitrorsense v3

Be the first to know when new unknown vulnerabilities affecting acer nitrorsense v3 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Acer / NitrorSense V3

3.01.3001 ≤ 3.01.3052

References

NVD ↗ CVE.org ↗ EPSS Data ↗

community.acer.com: https://community.acer.com/en/kb/articles/19652

Credits

Artem Domarev