CVE-2022-45452

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Acronis Agent versions before build 30430 Acronis Cyber Protect 15 versions before build 30984

Description The issue is related to local privilege escalation due to insecure folder permissions. This can allow an attacker to elevate their privileges.

Recommendations For Acronis Agent versions before build 30430, update to build 30430 or later. For Acronis Cyber Protect 15 versions before build 30984, update to build 30984 or later.

Fix

LPE

Improper Privilege Management

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269CWE-276

Related Identifiers

BDU:2023-02884

CVE-2022-45452

Affected Products

Acronis

Acronis Agent

Acronis Cyber Protect 15

CVE-2022-45452

Weakness Enumeration

Related Identifiers

Affected Products

References · 6