cbcvebase.
CVE-2024-34010
published 2024-04-29

CVE-2024-34010: Local privilege escalation due to unquoted search path vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before…

PriorityP337high8.2CVSS 3.0
AVLACLPRHUINSCCHIHAH
EPSS
0.20%
10.3th percentile
Local privilege escalation due to unquoted search path vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 37758, Acronis Cyber Protect 16 (Windows) before build 38690, Acronis True Image (Windows) before build 42386, Acronis True Image OEM (Windows) before build 42575.

Affected

4 ranges
VendorProductVersion rangeFixed in
acronisacronis_cyber_protect_16>= unspecified < 3869038690
acronisacronis_cyber_protect_cloud_agent>= unspecified < 3775837758
acronisacronis_true_image>= unspecified < 4238642386
acronisacronis_true_image_oem>= unspecified < 4257542575
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.