PT-2023-5786 · Acronis · Acronis Agent

Published

2023-10-04

Updated

2026-03-06

CVE-2023-44209

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Acronis Agent versions prior to build 29051

Description The issue is related to local privilege escalation due to improper soft link handling. This can allow an attacker to elevate their privileges. The estimated number of potentially affected devices is not specified.

Recommendations For versions prior to build 29051, update to a version that includes the fix for this issue, specifically build 29051 or later. As a temporary workaround, consider restricting access to sensitive areas of the system to minimize the risk of exploitation.

Fix

LPE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-610

Related Identifiers

BDU:2023-06472

CVE-2023-44209

Affected Products

Acronis Agent

PT-2023-5786 · Acronis · Acronis Agent

CVE-2023-44209

Weakness Enumeration

Related Identifiers

Affected Products

References · 7