PT-2021-21947 · Acronis · Acronis Cyber Protect 15+1

Published

2021-08-10

Updated

2022-07-12

CVE-2021-38088

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Acronis Cyber Protect 15 for Windows versions prior to build 27009

Description: The issue allows local privilege escalation via binary hijacking. This means an attacker could potentially gain higher privileges on a system by exploiting a vulnerability in how binaries are handled.

Recommendations: For versions prior to build 27009, update to a version that includes the fix for this issue to prevent local privilege escalation via binary hijacking.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-38088

Affected Products

Acronis

Acronis Cyber Protect 15

PT-2021-21947 · Acronis · Acronis Cyber Protect 15+1

CVE-2021-38088

Related Identifiers

Affected Products

References · 7