CVE-2026-28727

Summary

Local privilege escalation due to insecure Unix socket permissions. The following products are affected: Acronis Cyber Protect 17 (macOS) before build 41186, Acronis Cyber Protect Cloud Agent (macOS) before build 41124, Acronis True Image (macOS) before build 42902.

Affected Software

VendorProductVersion RangeStatus
AcronisAcronis Cyber Protect 17unspecified < 41186affected
AcronisAcronis Cyber Protect Cloud Agentunspecified < 41124affected
AcronisAcronis True Imageunspecified < 42902affected

Weaknesses

  • CWE-276: CWE-276

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References