CVE-2023-45248

Summary

CVE-2023-45248 is a local privilege escalation vulnerability caused by DLL hijacking in Acronis Cyber Protect Cloud Agent and Acronis Cyber Protect 16, both for Windows. This issue allows unprivileged attackers to exploit the system and elevate their privileges, potentially leading to unauthorized access or system manipulation. Affected versions of these products are below build 36497 for Acronis Cyber Protect Cloud Agent and build 37391 for Acronis Cyber Protect 16. It is strongly recommended to update to the latest versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.