Vulnerabilities > Acronis > True Image > High

DATE CVE VULNERABILITY TITLE RISK
2021-07-15 CVE-2020-25593 Incorrect Default Permissions vulnerability in Acronis True Image
Acronis True Image through 2021 on macOS allows local privilege escalation from admin to root due to insecure folder permissions.
local
low complexity
acronis CWE-276
7.2
2021-07-15 CVE-2020-25736 Unspecified vulnerability in Acronis True Image 2019/2020/2021
Acronis True Image 2019 update 1 through 2021 update 1 on macOS allows local privilege escalation due to an insecure XPC service configuration.
local
low complexity
acronis
7.8
2020-10-21 CVE-2020-10139 Improper Initialization vulnerability in Acronis True Image 2021
Acronis True Image 2021 includes an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory within C:\jenkins_agent\.
local
low complexity
acronis CWE-665
7.2
2017-06-21 CVE-2017-3219 Insufficient Verification of Data Authenticity vulnerability in Acronis True Image
Acronis True Image up to and including version 2017 Build 8053 performs software updates using HTTP.
low complexity
acronis CWE-345
8.3