Local Privilege Escalation in Acronis True Image for macOS
CVE-2020-25593

6.7MEDIUM

Key Information:

Vendor: Acronis
Status: True Image
Vendor: CVE Published:; 15 July 2021

Summary

Acronis True Image for macOS is susceptible to a local privilege escalation attack due to improper folder permissions. This vulnerability enables users with administrative privileges to elevate their access to root-level permissions, potentially compromising the system's integrity and exposing sensitive data. Proper permission settings are crucial to ensure the security of applications and their data.

References

https://www.acronis.com/en-us/blog/

x_refsource_MISC

https://kb.acronis.com/content/68396

x_refsource_MISC

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 15, 2021
Vulnerability Reserved
Sep 15, 2020