PT-2025-42767 · Vhs Electronic Software · Ace Center

Published

2025-10-20

Updated

2025-10-20

CVE-2025-8884

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions VHS Electronic Software Ltd. Co. ACE Center versions 3.10.100.1768 through 3.10.161.2254

Description An authorization bypass exists due to a user-controlled key issue in ACE Center, potentially leading to privilege abuse and exploitation of trusted identifiers.

Recommendations Update ACE Center to version 3.10.161.2255 or later.

Fix

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-639

Related Identifiers

CVE-2025-8884

Affected Products

Ace Center

PT-2025-42767 · Vhs Electronic Software · Ace Center

CVE-2025-8884

Weakness Enumeration

Related Identifiers

Affected Products

References · 6