PT-2024-5393 · Acronis · Acronis True Image

Redwise

Published

2024-04-29

Updated

2024-07-19

CVE-2024-34013

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Acronis True Image (macOS) versions before build 41396

Description The issue is related to a local privilege escalation due to an OS command injection vulnerability. This vulnerability may allow an attacker to elevate their privileges. The estimated number of potentially affected devices worldwide is not specified.

Recommendations For Acronis True Image (macOS) versions before build 41396, update to a version after build 41396 to resolve the issue. At the moment, there is no information about additional mitigation measures for this vulnerability.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

BDU:2024-06027

CVE-2024-34013

Affected Products

Acronis True Image

PT-2024-5393 · Acronis · Acronis True Image

CVE-2024-34013

Weakness Enumeration

Related Identifiers

Affected Products

References · 7