Lucene search

K
prionPRIOn knowledge basePRION:CVE-2020-10140
HistoryOct 21, 2020 - 2:15 p.m.

Code injection

2020-10-2114:15:00
PRIOn knowledge base
www.prio-n.com

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramData\Acronis directory. Because some privileged processes are executed from the C:\ProgramData\Acronis, an unprivileged user can achieve arbitrary code execution with SYSTEM privileges by placing a DLL in one of several paths within C:\ProgramData\Acronis.

CPENameOperatorVersion
true_imageeq2021

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

Related for PRION:CVE-2020-10140