Acronis Snap Deploy vulnerabilities
9 known vulnerabilities affecting acronis/snap_deploy.
Total CVEs
9
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH6MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2008-1410P3MEDIUMCVSS 4.3PoCv2.0.0.10762008-03-20
CVE-2008-1410 [MEDIUM] CWE-22 CVE-2008-1410: Directory traversal vulnerability in the PXE Server (pxesrv.exe) in Acronis Snap Deploy 2.0.0.1076 a
Directory traversal vulnerability in the PXE Server (pxesrv.exe) in Acronis Snap Deploy 2.0.0.1076 and earlier allows remote attackers to read arbitrary files via directory traversal sequences to the TFTP service.
nvd
CVE-2008-1411P4MEDIUMCVSS 5.0PoCv2.0.0.10762008-03-20
CVE-2008-1411 [MEDIUM] CWE-20 CVE-2008-1411: The PXE Server (pxesrv.exe) in Acronis Snap Deploy 2.0.0.1076 and earlier allows remote attackers to
The PXE Server (pxesrv.exe) in Acronis Snap Deploy 2.0.0.1076 and earlier allows remote attackers to cause a denial of service (crash) via an incomplete TFTP request, which triggers a NULL pointer dereference.
nvd
CVE-2023-2355P3HIGHCVSS 7.8fixed in 6v62023-04-27
CVE-2023-2355 [HIGH] CWE-427 CVE-2023-2355: Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected
Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 3900.
nvd
CVE-2022-30697P3HIGHCVSS 7.8fixed in 6v62022-05-16
CVE-2022-30697 [HIGH] CWE-427 CVE-2022-30697: Local privilege escalation due to insecure folder permissions. The following products are affected:
Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy (Windows) before build 3640
nvd
CVE-2022-30695P3HIGHCVSS 7.8fixed in 6v62022-05-16
CVE-2022-30695 [HIGH] CWE-250 CVE-2022-30695: Local privilege escalation due to excessive permissions assigned to child processes. The following p
Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis Snap Deploy (Windows) before build 3640
nvd
CVE-2022-30696P3HIGHCVSS 7.8fixed in 6v62022-05-16
CVE-2022-30696 [HIGH] CWE-427 CVE-2022-30696: Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected
Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 3640
nvd
CVE-2024-34017P3HIGHCVSS 7.3fixed in 6v62024-08-29
CVE-2024-34017 [HIGH] CWE-427 CVE-2024-34017: Local privilege escalation due to DLL hijacking vulnerability. The following products are affected:
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.
nvd
CVE-2024-34019P3HIGHCVSS 7.3fixed in 6v62024-08-29
CVE-2024-34019 [HIGH] CWE-427 CVE-2024-34019: Local privilege escalation due to DLL hijacking vulnerability. The following products are affected:
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.
nvd
CVE-2024-34018P4MEDIUMCVSS 5.5fixed in 6v62024-08-29
CVE-2024-34018 [MEDIUM] CWE-276 CVE-2024-34018: Sensitive information disclosure due to insecure folder permissions. The following products are affe
Sensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.
nvd