CVE 8.5 HIGH

Acer｜ListCheck.exe – Local Privilege Escalation_CVE-2025-14305

December 16, 2025 invoker category_cve

8.5 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

ListCheck.exe developed by Acer has a Local Privilege Escalation vulnerability. Authenticated local attackers can replace ListCheck.exe with a malicious executable of the same name, which will be executed by the system and result in privilege escalation.

AI Analysis

Local Privilege Escalation vulnerability in ListCheck.exe allowing authenticated local attackers to replace the executable with a malicious one, resulting in privilege escalation.

Basic Information

ID CVE-2025-14305

Source twcert

Published Dec 17, 2025 at 03:30

Affected Product

Vendor Acer

Product ListCheck.exe

Affected Versions Acer ListCheck.exe 0

CWE Classification

CWE-863

AI Assessment

AI Score 8.5 / 10

AI Severity High

Vendor Acer

Product ListCheck.exe

References

{
    "lastseen": "",
    "description": "ListCheck.exe developed by Acer has a Local Privilege Escalation vulnerability. Authenticated local attackers can replace ListCheck.exe with a malicious executable of the same name, which will be executed by the system and result in privilege escalation.",
    "published": "2025-12-17T03:30:05.509Z",
    "modified": "2025-12-17T03:30:05.509Z",
    "type": "cve",
    "title": "Acer\uff5cListCheck.exe - Local Privilege Escalation",
    "source": "twcert",
    "references": "https://www.twcert.org.tw/tw/cp-132-10580-01ad5-1.html\nhttps://www.twcert.org.tw/en/cp-139-10581-16346-2.html",
    "id": "CVE-2025-14305",
    "bulletinFamily": "",
    "cwe": [
        "CWE-863"
    ],
    "cvelist": null,
    "sourceData": "Acer ListCheck.exe 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ListCheck.exe",
    "version": "0",
    "vendor": "Acer",
    "ai_description": "Local Privilege Escalation vulnerability in ListCheck.exe allowing authenticated local attackers to replace the executable with a malicious one, resulting in privilege escalation.",
    "ai_severity": "High",
    "ai_vendor": "Acer",
    "ai_product": "ListCheck.exe",
    "ai_version": "0",
    "ai_score": 8.5
}

💭 Join the Security Discussion ❌ Cancel Reply