CVE-2020-36976

Name of the Vulnerable Software and Affected Versions Acer Global Registration Service version 1.0.0.3

Description An unquoted service path exists in the service configuration. Local users can exploit the unquoted path in 'C:Program Files (x86)AcerRegistration' to inject malicious executables. These executables would run with elevated LocalSystem privileges during service startup, potentially leading to arbitrary code execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.