PT-2024-39236 · Acronis · Acronis Cyber Protect Cloud Agent+1
Satz4797
·
Published
2024-09-16
·
Updated
2025-01-02
·
CVE-2024-8766
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Acronis Cyber Protect Cloud Agent (Windows) versions before build 38235
Acronis Cyber Protect 16 (Windows) versions before build 39169
Description:
A DLL hijacking vulnerability can lead to local privilege escalation. This issue affects Acronis products, allowing potential exploitation.
Recommendations:
For Acronis Cyber Protect Cloud Agent (Windows) versions before build 38235, update to build 38235 or later.
For Acronis Cyber Protect 16 (Windows) versions before build 39169, update to build 39169 or later.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acronis Cyber Protect 16
Acronis Cyber Protect Cloud Agent