CVE-2023-48677

HIGH 7.3

CVSS Score

7.3

EPSS Score

0.0%

EPSS Percentile

14th

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40901, Acronis Cyber Protect Cloud Agent (Windows) before build 39378, Acronis Cyber Protect 16 (Windows) before build 39938, Acronis True Image OEM (Windows) before build 42575.

CWE	CWE-427
Vendor	acronis
Product	acronis cyber protect home office
Published	Dec 12, 2023
Last Updated	Apr 10, 2026

Stay Ahead of the Next One

Get instant alerts for acronis acronis cyber protect home office

Be the first to know when new high vulnerabilities affecting acronis acronis cyber protect home office are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Affected Versions

Acronis / Acronis Cyber Protect Home Office

unspecified < 40901

Acronis / Acronis Cyber Protect Cloud Agent

unspecified < 39378

Acronis / Acronis Cyber Protect 16

unspecified < 39938

Acronis / Acronis True Image OEM

unspecified < 42575

References

NVD ↗ CVE.org ↗ EPSS Data ↗

security-advisory.acronis.com: https://security-advisory.acronis.com/advisories/SEC-5620

Credits

@veath (https://hackerone.com/veath)