First published: Thu Jan 02 2025(Updated: )
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect 16 (Windows) before build 39169.
Credit: security@acronis.com
Affected Software | Affected Version | How to fix |
---|---|---|
Acronis Cyber Protect 16 | <build 39169 | |
All of | ||
Any of | ||
Acronis Cyber Protect | <=15 | |
Acronis Cyber Protect | =16 | |
Acronis Cyber Protect | =16-update1 | |
Acronis Cyber Protect | =16-update2 | |
Microsoft Windows Operating System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-55540 is classified as a high severity local privilege escalation vulnerability.
To fix CVE-2024-55540, update Acronis Cyber Protect 16 to build 39169 or later.
CVE-2024-55540 affects Acronis Cyber Protect 16 on Windows versions prior to build 39169.
CVE-2024-55540 requires local access to the affected system to exploit the DLL hijacking vulnerability.
A DLL hijacking vulnerability like CVE-2024-55540 allows an attacker to execute malicious code with elevated privileges by tricking the application into loading a compromised DLL.