CVE-2023-44209

Summary

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 29051, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.

Affected Software

VendorProductVersion RangeStatus
AcronisAcronis Cyber Protect Cloud Agentunspecified < 29051affected
AcronisAcronis Cyber Protect 17unspecified < 41186affected

Weaknesses

  • CWE-610: CWE-610

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References