Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.
Assigner (CNA / source):[email protected] Remove this filter
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2025-11178 | Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image (Windows) before build 42386, Acronis True Image for Western Digital (Windows) before build 42636, Acronis True Image for SanDisk (Windows) before build 42679, Acronis True Image OEM (Windows) before build 42575. | 7.3 | 0.17% | 2025-09-30 | 2026-06-17 |
| CVE-2025-9578 | Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 40734. | 7.8 | 0.11% | 2025-08-28 | 2026-06-17 |
| CVE-2025-48963 | Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 40296. | 7.3 | 0.13% | 2025-08-28 | 2026-06-17 |
| CVE-2025-48962 | Sensitive information disclosure due to SSRF. The following products are affected: Acronis Cyber Protect 16 (Windows, Linux) before build 39938. | 4.3 | 0.19% | 2025-06-04 | 2026-06-17 |
| CVE-2025-48961 | Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect 16 (Windows) before build 39938. | 7.3 | 0.12% | 2025-06-04 | 2026-06-17 |
| CVE-2025-48960 | Weak server key used for TLS encryption. The following products are affected: Acronis Cyber Protect 16 (Linux, macOS, Windows) before build 39938. | 5.9 | 0.07% | 2025-06-04 | 2026-06-17 |
| CVE-2025-48959 | Local privilege escalation due to insecure file permissions. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 40077. | 6.7 | 0.11% | 2025-06-04 | 2026-06-17 |
| CVE-2025-30415 | Denial of service due to improper handling of malformed input. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 40077, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186. | 7.5 | 0.29% | 2025-06-04 | 2026-06-17 |
| CVE-2025-30409 | Denial of service due to allocation of resources without limits. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904, Acronis Cyber Protect 17 (Windows) before build 41186. | 5.5 | 0.16% | 2025-04-24 | 2026-06-17 |
| CVE-2025-30408 | Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904, Acronis Cyber Protect 16 (Windows) before build 39938. | 6.7 | 0.11% | 2025-04-24 | 2026-06-17 |
| CVE-2025-30407 | Local privilege escalation due to a binary hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39713. | 6.3 | 0.09% | 2025-03-26 | 2026-06-17 |
| CVE-2025-24832 | Arbitrary file overwrite during home directory recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM (Linux) before build 1.8.4.866, Acronis Backup plugin for cPanel & WHM (Linux) before build 1.9.1.892, Acronis Backup extension for Plesk (Linux) before build 1.8.7.615. | 5.5 | 0.18% | 2025-02-27 | 2026-06-17 |
| CVE-2025-24831 | Local privilege escalation due to unquoted search path vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378. | 6.6 | 0.18% | 2025-01-31 | 2026-06-17 |
| CVE-2025-24830 | Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378. | 6.3 | 0.05% | 2025-01-31 | 2026-06-17 |
| CVE-2025-24829 | Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378. | 6.3 | 0.05% | 2025-01-31 | 2026-06-17 |
| CVE-2025-24828 | Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378. | 6.3 | 0.07% | 2025-01-31 | 2026-06-17 |
| CVE-2025-24827 | Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378. | 6.3 | 0.05% | 2025-01-31 | 2026-06-17 |
| CVE-2025-24826 | Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy (Windows) before build 4625. | 6.7 | 0.12% | 2025-01-28 | 2026-06-17 |
| CVE-2024-56414 | Web installer integrity check used weak hash algorithm. The following products are affected: Acronis Cyber Protect 16 (Windows) before build 39169. | 5.5 | 0.11% | 2025-01-02 | 2026-06-17 |
| CVE-2024-56413 | Missing session invalidation after user deletion. The following products are affected: Acronis Cyber Protect 16 (Windows) before build 39169. | 6.1 | 0.23% | 2025-01-02 | 2026-06-17 |