CVE-2025-30408

MEDIUM 6.7

CVSS Score

6.7

EPSS Score

0.0%

EPSS Percentile

0th

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904, Acronis Cyber Protect 16 (Windows) before build 39938.

CWE	CWE-732
Vendor	acronis
Product	acronis cyber protect cloud agent
Published	Apr 24, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for acronis acronis cyber protect cloud agent

Be the first to know when new medium vulnerabilities affecting acronis acronis cyber protect cloud agent are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Affected Versions

Acronis / Acronis Cyber Protect Cloud Agent

unspecified < 39904

Acronis / Acronis Cyber Protect 16

unspecified < 39938

References

NVD ↗ CVE.org ↗ EPSS Data ↗

security-advisory.acronis.com: https://security-advisory.acronis.com/advisories/SEC-8035

Credits

@s3nds3c (https://hackerone.com/s3nds3c)