PT-2024-33500 · Acronis · Acronis Cyber Files

Tkoyeung

·

Published

2024-10-17

·

Updated

2024-10-22

·

CVE-2024-49389

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Acronis Cyber Files (Windows) versions before 9.0.0x24
Description The issue is related to local privilege escalation due to insecure folder permissions.
Recommendations For Acronis Cyber Files (Windows) versions before 9.0.0x24, update to a version 9.0.0x24 or later to resolve the issue.

Fix

Incorrect Default Permissions

Weakness Enumeration

CWE-276

Related Identifiers

CVE-2024-49389

Affected Products

Acronis Cyber Files