What is CVE-2026-4824?

CVE-2026-4824 is a high-severity vulnerability in Enter Software Iperius Backup, classified under Incorrect Privilege Assignment. CVSS score: 7.0/10. Published 2026-03-25.

How severe is CVE-2026-4824?

High severity. CVSS v3 base score is 7.0 out of 10.

Privilege escalation in Enter Software Iperius Backup

CVE-2026-4824

A vulnerability has been found in Enter Software Iperius Backup up to 8.7.3. Affected by this issue is some unknown functionality of the component Backup Job Configuration File Handler. The manipulation leads to improper privilege manageme…

EPSS: 0.000 (0.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.0 (High). Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Enter Software Iperius Backup — versions 8.7.0, 8.7.1, 8.7.2

Weakness classification (CWE)

References

VDB-353124 | Enter Software Iperius Backup Backup Job Configuration File privileges management (vdb-entry)
VDB-353124 | CTI Indicators (IOB, IOC, TTP) (signature, permissions-required)
Submit #774220 | Enter Software Iperius Backup <= 8.7.2 Improper Privilege Management (third-party-advisory)
cna@vuldb.com (exploit)
cna@vuldb.com (patch)

Frequently asked questions

What is CVE-2026-4824?: CVE-2026-4824 is a high-severity vulnerability in Enter Software Iperius Backup, classified under Incorrect Privilege Assignment. CVSS score: 7.0/10. Published 2026-03-25.
How severe is CVE-2026-4824?: High severity. CVSS v3 base score is 7.0 out of 10.