CVE-2023-48677

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40901, Acronis Cyber Protect Cloud Agent (Windows) before build 39378, Acronis Cyber Protect 16 (Windows) before build 39938.

Published: Dec 12, 2023
Updated: Jun 5, 2025
CVE: CVE-2023-48677
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWEs:

CWE-427

Affected Software
References

Software	From	Fixed in
acronis / cyber_protect_home_office	-	40901

https://security-advisory.acronis.com/advisories/SEC-5620

Vulnerability Database

290,206

CVE-2023-48677