GCVE - cpe:2.3:a:acronis:true_image:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:acronis:true_image:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Acronis (`d64000ef-8c61-5ba5-86d7-61c680cdcd75`)
Product	True Image (`66c1ba65-942e-517a-b2cc-b7a92d5cae24`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-10140`	vulnerable	2026-06-03 14:40:59.362057	Details available HIGH (7.8) Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramData\Acronis directory. Because some privileged processes are executed from the C:\ProgramData\Acronis, an unprivileged user can achieve arbitrary code execution with SYSTEM privileges by placing a DLL in one of several paths within C:\ProgramData\Acronis. Published: 2020-10-21T13:40:19.000Z Updated: 2024-08-04T10:50:57.928Z Open on db.gcve.eu Reference links https://www.kb.cert.org/vuls/id/114757	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-3219`	vulnerable	2026-06-03 14:37:14.701462	Details available Acronis True Image up to and including version 2017 Build 8053 performs software updates using HTTP. Downloaded updates are only verified using a server-provided MD5 hash. Published: 2017-06-21T20:00:00.000Z Updated: 2024-08-05T14:16:28.231Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/99128 https://www.kb.cert.org/vuls/id/489392	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-1280`	vulnerable	2026-06-03 14:28:40.005785	Details available Acronis True Image Windows Agent 1.0.0.54 and earlier, included in Acronis True Image Enterprise Server 9.5.0.8072 and the other True Image packages, allows remote attackers to cause a denial of service (crash) via a malformed packet to port 9876, which triggers a NULL pointer dereference. Published: 2008-03-10T23:00:00.000Z Updated: 2024-08-07T08:17:34.499Z Open on db.gcve.eu Reference links http://secunia.com/advisories/29306 https://exchange.xforce.ibmcloud.com/vulnerabilities/41070 http://www.vupen.com/english/advisories/2008/0812/references http://aluigi.altervista.org/adv/acroagent-adv.txt http://www.securityfocus.com/bid/28169	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.