CVE-2021-38086

Name of the Vulnerable Software and Affected Versions: Acronis Cyber Protect 15 for Windows versions prior to build 27009 Acronis Agent for Windows versions prior to build 26226

Description: The issue allows local privilege escalation via DLL hijacking. This means an attacker could potentially exploit the vulnerability to gain higher privileges on a system, potentially leading to unauthorized access or control.

Recommendations: For Acronis Cyber Protect 15 for Windows versions prior to build 27009, update to build 27009 or later to resolve the issue. For Acronis Agent for Windows versions prior to build 26226, update to build 26226 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive system resources to minimize the risk of exploitation.