4.4
CVE-2024-55542
- EPSS 0.16%
- Veröffentlicht 02.01.2025 16:15:08
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle security@acronis.com
- CVE-Watchlists
- Unerledigt
Local privilege escalation due to excessive permissions assigned to Tray Monitor service. The following products are affected: Acronis Cyber Protect 16 (Linux, macOS, Windows) before build 39169, Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 35895.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAcronis
≫
Produkt
Acronis Cyber Protect 16
Default Statusunaffected
Version
unspecified
Version <
39169
Status
affected
HerstellerAcronis
≫
Produkt
Acronis Cyber Protect Cloud Agent
Default Statusunaffected
Version
unspecified
Version <
35895
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.057 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security@acronis.com | 4.4 | 1.8 | 2.5 |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
|
CWE-266 Incorrect Privilege Assignment
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
https://security-advisory.acronis.com/advisories/SEC-5342