True Image 2020@24.5.22510 Security Vulnerabilities and Issues — True Image 2020@24.5.22510 CVE List

Lucene search

AcronisTrue Image 202024.5.22510

3 matches found

CVE•added 2021/05/25 12:15 p.m.•34 views

CVE-2020-9452

An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe includes functionality to quarantine files by copying a suspected ransomware file from one directory to another using SYSTEM privileges. Because unprivileged users have write permissions in the quarantine fol...

7.8CVSS7.5AI score0.00044EPSS

CVE•added 2021/05/25 12:15 p.m.•32 views

CVE-2020-9450

An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe exposes a REST API that can be used by everyone, even unprivileged users. This API is used to communicate from the GUI to anti_ransomware_service.exe. This can be exploited to add an arbitrary malicious execu...

7.8CVSS7.5AI score0.00056EPSS

CVE•added 2021/05/25 12:15 p.m.•30 views

CVE-2020-9451

An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe keeps a log in a folder where unprivileged users have write permissions. The logs are generated in a predictable pattern, allowing an unprivileged user to create a hardlink from a (not yet created) log file t...

5.5CVSS5.4AI score0.00037EPSS