HIGHCVE-2026-33092Published 2026-04-10Modified 2026-04-14CNA Acronis

CVE-2026-33092: Local privilege escalation due to improper handling of environment variables

Local privilege escalation due to improper handling of environment variables. The following products are affected: Acronis True Image OEM (macOS) before build 42571, Acronis True Image (macOS) before build 42902.

CVSS v3.0: 7.8
Severity: HIGH
Fixed in: 42571
Affected Products: 2

Fix available

4257142902

Affected packages

Acronis / Acronis True Image OEM
< 42571 (from unspecified)
Acronis / Acronis True Image
< 42902 (from unspecified)

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

SEC-9407

Metrics

Fix available