{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-0705", "assignerOrgId": "73dc0fef-1c66-4a72-9d2d-0a0f4012c175", "state": "PUBLISHED", "assignerShortName": "Acronis", "dateReserved": "2026-01-08T02:16:38.875Z", "datePublished": "2026-01-27T16:43:42.575Z", "dateUpdated": "2026-01-27T18:22:08.142Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "73dc0fef-1c66-4a72-9d2d-0a0f4012c175", "shortName": "Acronis", "dateUpdated": "2026-01-27T16:43:42.575Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-276", "description": "CWE-276", "type": "CWE"}]}], "affected": [{"vendor": "Acronis", "product": "Acronis Cloud Manager", "platforms": ["Windows"], "versions": [{"version": "unspecified", "status": "affected", "lessThan": "6.4.25342.354", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cloud Manager (Windows) before build 6.4.25342.354."}], "references": [{"url": "https://security-advisory.acronis.com/advisories/SEC-7316", "name": "SEC-7316", "tags": ["vendor-advisory"]}], "credits": [{"lang": "en", "value": "@satz4797 (https://hackerone.com/satz4797)", "type": "finder"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_0": {"version": "3.0", "baseScore": 6.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-27T18:20:23.866068Z", "id": "CVE-2026-0705", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-27T18:22:08.142Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-0705", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-01-27T18:20:23.866068Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-27T18:20:32.431Z"}}], "cna": {"credits": [{"lang": "en", "type": "finder", "value": "@satz4797 (https://hackerone.com/satz4797)"}], "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 6.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Acronis", "product": "Acronis Cloud Manager", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "6.4.25342.354", "versionType": "semver"}], "platforms": ["Windows"], "defaultStatus": "unaffected"}], "references": [{"url": "https://security-advisory.acronis.com/advisories/SEC-7316", "name": "SEC-7316", "tags": ["vendor-advisory"]}], "descriptions": [{"lang": "en", "value": "Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cloud Manager (Windows) before build 6.4.25342.354."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-276", "description": "CWE-276"}]}], "providerMetadata": {"orgId": "73dc0fef-1c66-4a72-9d2d-0a0f4012c175", "shortName": "Acronis", "dateUpdated": "2026-01-27T16:43:42.575Z"}}}, "cveMetadata": {"cveId": "CVE-2026-0705", "state": "PUBLISHED", "dateUpdated": "2026-01-27T18:22:08.142Z", "dateReserved": "2026-01-08T02:16:38.875Z", "assignerOrgId": "73dc0fef-1c66-4a72-9d2d-0a0f4012c175", "datePublished": "2026-01-27T16:43:42.575Z", "assignerShortName": "Acronis"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cloud Manager (Windows) before build 6.4.25342.354."}, {"lang": "es", "value": "Escalada de privilegios local debido a permisos de carpeta inseguros. Los siguientes productos est\u00e1n afectados: Acronis Cloud Manager (Windows) anterior a la compilaci\u00f3n 6.4.25342.354."}], "id": "CVE-2026-0705", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 0.8, "impactScore": 5.9, "source": "security@acronis.com", "type": "Secondary"}]}, "published": "2026-01-27T17:16:10.173", "references": [{"source": "security@acronis.com", "url": "https://security-advisory.acronis.com/advisories/SEC-7316"}], "sourceIdentifier": "security@acronis.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-276"}], "source": "security@acronis.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T02:03:52.598908+00:00", "value": {"mitigation_remediation": ["Apply the latest update to Acronis Cloud Manager, installing a build newer than 6.4.25342.354.", "Ensure that system folders used by Acronis Cloud Manager have the correct permissions, restricting modify access to only necessary accounts.", "Review local user accounts and audit permissions to prevent accidental privilege escalation, and monitor system logs for abnormal activity."], "summary": {"action": "Immediate Patch", "impact": "Local Privilege Escalation"}, "threat_synthesis": {"affected_systems": "Acronis Cloud Manager (Windows) versions prior to build 6.4.25342.354 are affected.", "description_and_impact": "The vulnerability arises from insecure folder permissions in Acronis Cloud Manager, allowing an attacker with local access to modify critical directories. This can lead to escalation of privileges and compromise the integrity of the system. The flaw is categorized as CWE-276, indicating improper configuration of permissions.", "risk_and_exploitability": "The CVSS score of 6.7 denotes a medium severity vulnerability. With an EPSS score of less than 1% and no listing in the CISA KEV catalog, the likelihood of exploitation is low at present. However, the attack requires local user access and can result in full administrative control over the compromised host. The attack vector is inferred to be local due to the nature of the permission issue and the lack of remote interfaces mentioned in the description."}}}}, "created": "2026-01-28T12:22:30.772473+00:00", "title": "Local Privilege Escalation via Insecure Folder Permissions", "updated": "2026-04-18T02:15:05.881999+00:00", "vendors": ["acronis", "acronis$PRODUCT$cloud_manager"]}