CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-49385
https://notcve.org/view.php?id=CVE-2024-49385
02 Jan 2025 — Sensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis True Image (Windows) before build 41736. • https://security-advisory.acronis.com/advisories/SEC-2397 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 4.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-55538
https://notcve.org/view.php?id=CVE-2024-55538
02 Jan 2025 — Sensitive information disclosure due to missing authentication. The following products are affected: Acronis True Image (macOS) before build 41725, Acronis True Image (Windows) before build 41736. • https://security-advisory.acronis.com/advisories/SEC-2209 • CWE-306: Missing Authentication for Critical Function •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34013
https://notcve.org/view.php?id=CVE-2024-34013
18 Jul 2024 — Local privilege escalation due to OS command injection vulnerability. The following products are affected: Acronis True Image (macOS) before build 41396. Escalada de privilegios locales debido a una vulnerabilidad de inyección de comandos del sistema operativo. Los siguientes productos se ven afectados: Acronis True Image (macOS) anterior a la compilación 41396. • https://security-advisory.acronis.com/advisories/SEC-7035 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •