First published: Mon Feb 13 2023(Updated: )
Local privilege escalation due to incomplete uninstallation cleanup. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40107, Acronis Agent (Windows) before build 30025, Acronis Cyber Protect 15 (Windows) before build 30984.
Credit: security@acronis.com
Affected Software | Affected Version | How to fix |
---|---|---|
Acronis Agent | <c22.07 | |
Acronis Cyber Protect | =15 | |
Acronis Cyber Protect | =15-update1 | |
Acronis Cyber Protect | =15-update2 | |
Acronis Cyber Protect | =15-update3 | |
Acronis Cyber Protect | =15-update4 | |
Acronis Cyber Protect Home Office | ||
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2022-45455.
The severity of CVE-2022-45455 is high, with a CVSS score of 7.8.
The products affected by CVE-2022-45455 are Acronis Cyber Protect Home Office (Windows) before build 40107, Acronis Agent (Windows) before build 30025, Acronis Cyber Protect 15 (Windows) before build 30984.
The vulnerability can be exploited by a local attacker with low privileges to escalate their privileges on the affected systems.
Yes, a fix is available for CVE-2022-45455. Users should update to the latest build of the affected products.