Local Privilege Escalation Vulnerability in Acronis True Image for Mac
CVE-2020-15496

7.8HIGH

Key Information:

Vendor: Acronis
Status: True Image
Vendor: CVE Published:; 15 July 2021

What is CVE-2020-15496?

A vulnerability was identified in Acronis True Image for Mac prior to the 2021 Update 4 that allowed local privilege escalation due to insecure folder permissions. This flaw could potentially be exploited by local users to gain elevated privileges on the system, which may lead to unauthorized access and manipulation of sensitive information. Users of the affected versions are encouraged to update their software promptly to mitigate potential risks associated with this vulnerability.

References

https://www.acronis.com/en-us/support/updates/index.html

x_refsource_MISC

https://kb.acronis.com/content/68396

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 15, 2021
Vulnerability Reserved
Jul 1, 2020