Vulnerability in Acronis Cyber Protect Home Office

CVE-2021-44206

Local privilege escalation due to DLL hijacking vulnerability in Acronis Media Builder service. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 39612, Acronis True Image 2021 (Windows) before b…

EPSS: 0.001 (16.4th percentile) — read the EPSS interpretation.

Affected products

Acronis Cyber Protect Home Office — versions unspecified
Acronis True Image 2021 — versions unspecified

Weakness classification (CWE)

CWE-427 — Uncontrolled Search Path Element

References

security-advisory.acronis.com/advisories/SEC-3058 (x_refsource_MISC)