NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。
Assigner(CNA/発行元):[email protected] この条件を外す
| CVE | 説明 | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|
| CVE-2026-50033 | Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227. | 7.3 | 0.11% | 2026-06-03 | 2026-06-17 |
| CVE-2026-44682 | Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227. | 7.3 | 0.11% | 2026-06-03 | 2026-06-17 |
| CVE-2026-44609 | Local privilege escalation due to EXE hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227. | 7.3 | 0.11% | 2026-06-03 | 2026-06-17 |
| CVE-2026-42061 | Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227. | 7.3 | 0.11% | 2026-06-03 | 2026-06-17 |
| CVE-2026-41952 | Local privilege escalation due to improper input validation. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.93212, Acronis Cyber Protect Cloud Agent (Windows) before build 42183. | 7.8 | 0.11% | 2026-04-29 | 2026-06-17 |
| CVE-2026-41220 | Local privilege escalation due to improper input validation. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.93212, Acronis Cyber Protect Cloud Agent (Windows) before build 42183. | 7.8 | 0.11% | 2026-04-29 | 2026-06-17 |
| CVE-2026-33271 | Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis True Image (Windows) before build 42902. | 6.7 | 0.09% | 2026-04-02 | 2026-06-17 |
| CVE-2026-33092 | Local privilege escalation due to improper handling of environment variables. The following products are affected: Acronis True Image OEM (macOS) before build 42571, Acronis True Image (macOS) before build 42902. | 7.8 | 0.18% | 2026-04-10 | 2026-06-17 |
| CVE-2026-28728 | Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image (Windows) before build 42902. | 6.7 | 0.10% | 2026-04-02 | 2026-06-17 |
| CVE-2026-28727 | Local privilege escalation due to insecure Unix socket permissions. The following products are affected: Acronis Cyber Protect 17 (macOS) before build 41186, Acronis Cyber Protect Cloud Agent (macOS) before build 41124, Acronis True Image (macOS) before build 42902. | 7.8 | 0.10% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28726 | Sensitive information disclosure due to improper access control. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186. | 4.3 | 0.18% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28725 | Sensitive information disclosure due to improper configuration of a headless browser. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186. | 5.5 | 0.12% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28724 | Unauthorized data access due to insufficient access control validation. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186. | 4.3 | 0.18% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28723 | Unauthorized report deletion due to insufficient access control. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186. | 4.3 | 0.17% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28722 | Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186. | 7.3 | 0.15% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28721 | Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186. | 7.3 | 0.15% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28720 | Unauthorized modification of settings due to insufficient authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186. | 4.3 | 0.17% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28719 | Unauthorized resource manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186. | 4.3 | 0.17% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28718 | Denial of service due to insufficient input validation in authentication logging. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186. | 7.5 | 0.34% | 2026-03-05 | 2026-06-17 |
| CVE-2026-28717 | Local privilege escalation due to improper directory permissions. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186. | 5.0 | 0.11% | 2026-03-05 | 2026-06-17 |