Vulnerability Details CVE-2020-25736
Acronis True Image 2019 update 1 through 2021 update 1 on macOS allows local privilege escalation due to an insecure XPC service configuration.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.151
EPSS Ranking 94.2%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
- http://packetstormsecurity.com/files/170246/Acronis-TrueImage-XPC-Privilege-Escalation.html
- https://kb.acronis.com/content/68061
- https://www.acronis.com/en-us/blog/
- http://packetstormsecurity.com/files/170246/Acronis-TrueImage-XPC-Privilege-Escalation.html
- https://kb.acronis.com/content/68061
- https://www.acronis.com/en-us/blog/
Products affected by CVE-2020-25736
-
cpe:2.3:a:acronis:true_image:2019
-
cpe:2.3:a:acronis:true_image:2020
-
cpe:2.3:a:acronis:true_image:2021