7.8
CVE-2026-33092
- EPSS 0.18%
- Veröffentlicht 10.04.2026 13:17:45
- Zuletzt bearbeitet 19.05.2026 15:05:11
- Quelle security@acronis.com
- CVE-Watchlists
- Unerledigt
Local privilege escalation due to improper handling of environment variables. The following products are affected: Acronis True Image OEM (macOS) before build 42571, Acronis True Image (macOS) before build 42902.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAcronis
≫
Produkt
Acronis True Image OEM
Default Statusunaffected
Version
unspecified
Version <
42571
Status
affected
HerstellerAcronis
≫
Produkt
Acronis True Image
Default Statusunaffected
Version
unspecified
Version <
42902
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.18% | 0.078 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security@acronis.com | 7.8 | 1.8 | 5.9 |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-15 External Control of System or Configuration Setting
One or more system settings or configuration elements can be externally controlled by a user.
https://security-advisory.acronis.com/advisories/SEC-9407