Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Agent (Windows) before build 30430, Acronis Cyber Protect 15 (Windows) before build 30984.
During installation, installed file permissions are set to allow anyone to modify those files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Agent | Acronis | * | c21.09 (excluding) |
Cyber_protect | Acronis | * | 15 (excluding) |
Cyber_protect | Acronis | 15 (including) | 15 (including) |
Cyber_protect | Acronis | 15-update1 (including) | 15-update1 (including) |
Cyber_protect | Acronis | 15-update2 (including) | 15-update2 (including) |
Cyber_protect | Acronis | 15-update3 (including) | 15-update3 (including) |
Cyber_protect | Acronis | 15-update4 (including) | 15-update4 (including) |