Vulnerability Description
In the Quick Access Service (QAAdminAgent.exe) in Acer Quick Access V2.01.3000 through 2.01.3027 and V3.00.3000 through V3.00.3008, a REGULAR user can load an arbitrary unsigned DLL into the signed service's process, which is running as NT AUTHORITY\SYSTEM. This is a DLL Hijacking vulnerability (including search order hijacking, which searches for the missing DLL in the PATH environment variable), which is caused by an uncontrolled search path element for nvapi.dll, atiadlxx.dll, or atiadlxy.dll.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Acer | Quick Access | >= 2.01.3000, <= 2.01.3027 |
Related Weaknesses (CWE)
References
- https://drive.google.com/open?id=1r0cr-H_FMc8V4hwlqF1MAEhSSnztm5spExploitThird Party Advisory
- https://us.answers.acer.com/app/answers/detail/a_id/64586PatchVendor Advisory
- https://drive.google.com/open?id=1r0cr-H_FMc8V4hwlqF1MAEhSSnztm5spExploitThird Party Advisory
- https://us.answers.acer.com/app/answers/detail/a_id/64586PatchVendor Advisory
FAQ
What is CVE-2019-18670?
CVE-2019-18670 is a vulnerability with a CVSS score of 7.8 (HIGH). In the Quick Access Service (QAAdminAgent.exe) in Acer Quick Access V2.01.3000 through 2.01.3027 and V3.00.3000 through V3.00.3008, a REGULAR user can load an arbitrary unsigned DLL into the signed se...
How severe is CVE-2019-18670?
CVE-2019-18670 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-18670?
Check the references section above for vendor advisories and patch information. Affected products include: Acer Quick Access.