Primary

Context

Acronis Cyber Protect Cloud Agent for Windows Local Privilege Escalation Vulnerability

Vulnerability

Patched

A local privilege escalation vulnerability has been identified in Acronis Cyber Protect Cloud Agent for Windows, affecting versions prior to build 40077. The issue arises from insecure file permissions, which could potentially be exploited to gain elevated privileges.

Impact

Exploitation of this vulnerability allows for local privilege escalation, enabling a user to gain higher-level permissions on the system.

Remediation

Users can update to Acronis Cyber Protect Cloud Agent version C25.05 or later to address this vulnerability.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Acronis Cyber Protect Cloud Agent for Windows Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Acronis Cyber Protect Cloud Agent

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating