CVE-2024-55542

CVSS 3.0 Score 4.4 of 10 (medium)

Details

Published Jan 2, 2025

CWE ID 266

Summary

CVE-2024-55542 is a newly disclosed local privilege escalation vulnerability that affects Acronis Cyber Protect versions 16 (for Linux, macOS, and Windows) prior to build 39169, and Acronis Cyber Protect Cloud Agent for Linux, macOS, and Windows before build 35895. The vulnerability stems from excessive permissions assigned to the Tray Monitor service, which allows an attacker to elevate their privileges and gain unauthorized access to sensitive system data or make unintended modifications. Successful exploitation of this vulnerability could potentially lead to significant security risks, highlighting the importance of applying the relevant patches or updates to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Predator Still Active, with New Client and Corporate Links Identified

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Know What Matters

For Customers

For Partners

CVE-2024-55542

CVSS 3.0 Score 4.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations