Versio.io

CVE-2021-44205

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 05-02-2022 12:15
Last modified: - 09-02-2022 07:12
Total changes: - 2

Description

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 39612, Acronis True Image 2021 (Windows) before build 39287

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Low
Attack complexity
Local
Attack vector
High
Availability
High
Confidentiality
High
Integrity
Low
Privileges required
Unchanged
Scope
Required
User interaction
7.3
Base score
1.3
5.9
Exploitability score
Impact score
 

Verification logic

OR
OR
vendor=acronis AND product=true_image AND version=2021 AND update=- AND target_software=windows
vendor=acronis AND product=true_image AND version=2021 AND update=update_1 AND target_software=windows
vendor=acronis AND product=true_image AND version=2021 AND update=update_2 AND target_software=windows
vendor=acronis AND product=true_image AND version=2021 AND update=update_3 AND target_software=windows
vendor=acronis AND product=true_image AND version=2021 AND update=update_4 AND target_software=windows
AND
OR
vendor=acronis AND product=cyber_protect_home_office AND version=-
OR
vendor=microsoft AND product=windows AND version=-
 

Reference

 


Keywords

NVD

 

CVE-2021-44205

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.