CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 38235, Acronis Cyber Protect 16 (Windows) before build 39169.

CWE 1 Total

Learn more

CWE-427: CWE-427

CVSS 1 Total

Learn more

Score	Severity	Version	Vector String
6.7	MEDIUM	3.0	CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Product Status

Learn more

Versions 1 Total

Default Status: unaffected

affected

Versions 1 Total

Default Status: unaffected

affected

Credits

@satz4797 (https://hackerone.com/satz4797) finder

References 1 Total

security-advisory.acronis.com: SEC-7218
external site
vendor-advisory

Authorized Data Publishers

Learn more

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: Acronis International GmbH

Description

CWE 1 Total

CVSS 1 Total

Product Status

Credits

References 1 Total

Authorized Data Publishers

CISA-ADP