CVE-2024-55542: 
Acronis Cyber Protect vulnerability analysis and mitigation

Local privilege escalation vulnerability (CVE-2024-55542) was discovered in Acronis Cyber Protect products, affecting multiple platforms. The vulnerability exists due to excessive permissions assigned to Tray Monitor service in Acronis Cyber Protect 16 (Linux, macOS, Windows) before build 39169 and Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 35895 (NVD).

The vulnerability is classified as CWE-266 (Incorrect Privilege Assignment) with a CVSS v3.0 base score of 4.4 (MEDIUM). The attack vector is Local (L), requiring low attack complexity (AC:L) and low privileges (PR:L) with no user interaction (UI:N). The scope is unchanged (S:U) with low impacts on confidentiality (C:L) and integrity (I:L), and no impact on availability (A:N) (NVD).

The vulnerability allows local attackers with low privileges to escalate their privileges on affected systems through the Tray Monitor service. This could lead to unauthorized access to system resources and potential system compromise (CISA).

Users should upgrade Acronis Cyber Protect 16 to build 39169 or later, and Acronis Cyber Protect Cloud Agent to build 35895 or later to address this vulnerability (NVD).