HIGHCVE-2026-28727Published Modified CNA Acronis
CVE-2026-28727: Local privilege escalation due to insecure Unix socket permissions
Local privilege escalation due to insecure Unix socket permissions. The following products are affected: Acronis Cyber Protect 17 (macOS) before build 41186, Acronis Cyber Protect Cloud Agent (macOS) before build 41124, Acronis True Image (macOS) before build 42902.
Metrics
- CVSS v3.0
- 7.8
- Severity
- HIGH
- Fixed in
- 41124
- Affected Products
- 3
Fix available
411244118642902
Affected packages
- Acronis / Acronis Cyber Protect 17< 41186 (from unspecified)
- Acronis / Acronis Cyber Protect Cloud Agent< 41124 (from unspecified)
- Acronis / Acronis True Image< 42902 (from unspecified)
CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HReferences