Vulnerabilities > Acronis > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-05 | CVE-2021-32581 | Improper Certificate Validation vulnerability in Acronis products Acronis True Image prior to 2021 Update 4 for Windows, Acronis True Image prior to 2021 Update 5 for Mac, Acronis Agent prior to build 26653, Acronis Cyber Protect prior to build 27009 did not implement SSL certificate validation. | 8.1 |
| 2021-07-30 | CVE-2020-14999 | Unspecified vulnerability in Acronis Agent A logic bug in system monitoring driver of Acronis Agent after 12.5.21540 and before 12.5.23094 allowed to bypass Windows memory protection and access sensitive data. | 7.5 |
| 2021-07-15 | CVE-2020-15495 | Unspecified vulnerability in Acronis True Image 2019/2020 Acronis True Image 2019 update 1 through 2020 on macOS allows local privilege escalation due to an insecure XPC service configuration. | 7.8 |
| 2021-07-15 | CVE-2020-25736 | Unspecified vulnerability in Acronis True Image 2019/2020/2021 Acronis True Image 2019 update 1 through 2021 update 1 on macOS allows local privilege escalation due to an insecure XPC service configuration. | 7.8 |
| 2021-07-15 | CVE-2020-15496 | Improper Preservation of Permissions vulnerability in Acronis True Image Acronis True Image for Mac before 2021 Update 4 allowed local privilege escalation due to insecure folder permissions. | 7.8 |
| 2021-05-25 | CVE-2020-9450 | Incorrect Default Permissions vulnerability in Acronis True Image 2020 24.5.22510 An issue was discovered in Acronis True Image 2020 24.5.22510. | 7.8 |
| 2021-05-25 | CVE-2020-9452 | Link Following vulnerability in Acronis True Image 2020 24.5.22510 An issue was discovered in Acronis True Image 2020 24.5.22510. | 7.8 |
| 2021-02-22 | CVE-2020-35556 | Unspecified vulnerability in Acronis Cyber Protect 15 An issue was discovered in Acronis Cyber Protect before 15 Update 1 build 26172. | 7.5 |
| 2021-01-29 | CVE-2020-35145 | Uncontrolled Search Path Element vulnerability in Acronis True Image Acronis True Image for Windows prior to 2021 Update 3 allowed local privilege escalation due to a DLL hijacking vulnerability in multiple components, aka an Untrusted Search Path issue. | 7.8 |
| 2020-10-21 | CVE-2020-10140 | Incorrect Permission Assignment for Critical Resource vulnerability in Acronis True Image 2021 Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramData\Acronis directory. | 7.3 |