CVE-2021-38086

September 23, 2021

Acronis Cyber Protect 15 for Windows prior to build 27009 and Acronis Agent for Windows prior to build 26226 allowed local privilege escalation via DLL hijacking.

Summary:

Acronis Cyber Protect 15 for Windows prior to build 27009 and Acronis Agent for Windows prior to build 26226 allowed local privilege escalation via DLL hijacking.

Reference Links(if available):

  • https://kb.acronis.com/content/68564

  • CVSS Score (if available)

    v2: / MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P

    v3: / HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

    Links to Exploits(if available)

  • You may have missed

    CISA: CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities

    CISA: CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities

    November 22, 2024
    CISA: Adobe Releases Security Updates for Multiple Products

    CISA: Adobe Releases Security Updates for Multiple Products

    November 22, 2024
    CISA: JCDC’s Collaborative Efforts Enhance Cybersecurity for the 2024 Olympic and Paralympic Games

    CISA: JCDC’s Collaborative Efforts Enhance Cybersecurity for the 2024 Olympic and Paralympic Games

    November 22, 2024
    CISA: Ivanti Releases Security Updates for Multiple Products

    CISA: Ivanti Releases Security Updates for Multiple Products

    November 22, 2024
    CISA: CISA Releases Five Industrial Control Systems Advisories

    CISA: CISA Releases Five Industrial Control Systems Advisories

    November 22, 2024