Privilege Escalation Vulnerability in Acronis Cyber Backup and Cyber Protect
CVE-2020-10138
7.8HIGH
Summary
A vulnerability in Acronis Cyber Backup 12.5 and Cyber Protect 15 arises from a misconfigured OpenSSL component that allows unprivileged Windows users to exploit the OPENSSLDIR variable. By creating a subdirectory in the path specified, users can introduce a crafted openssl.cnf file, potentially enabling arbitrary code execution with SYSTEM privileges. This poses significant risks, as it could lead to unauthorized access and control over the affected systems.
Affected Version(s)
Cyber Backup 12.5 < 16363
Cyber Protect 15 < 24600
References
CVSS V3.1
Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Will Dormann