CVE-2023-45248

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Oct 9, 2023
Updated: Feb 27, 2024
CWE ID 427

Summary

CVE-2023-45248 is a vulnerability that affects Acronis Cyber Protect Cloud Agent (Windows) before build 36497 and Acronis Cyber Protect 16 (Windows) before build 37391. It is a local privilege escalation vulnerability caused by DLL hijacking. The risk score is 25, with a base severity of HIGH and base score of 7.3. The exploitability score is 1.3, indicating a relatively low level of difficulty to exploit. The potential danger to an organization includes high integrity and confidentiality impact, as well as the requirement for user interaction. Remediation should involve updating the affected products to the specified builds or newer versions to mitigate the vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-45248 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options