High severity7.8NVD Advisory· Published Aug 31, 2023· Updated Apr 10, 2026

CVE-2023-41743

Description

Local privilege escalation due to insecure driver communication port permissions. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40278, Acronis Cyber Protect Cloud Agent (Windows) before build 31637, Acronis Cyber Protect 15 (Windows) before build 35979, Acronis True Image OEM (Windows) before build 42575.

Affected products

Acronis/Agent
cpe:2.3:a:acronis:agent:*:*:*:*:*:*:*:*
Range: <c23.02
Acronis/Cyber Protect6 versions
cpe:2.3:a:acronis:cyber_protect:15:-:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:acronis:cyber_protect:15:-:*:*:*:*:*:*
- cpe:2.3:a:acronis:cyber_protect:15:update1:*:*:*:*:*:*
- cpe:2.3:a:acronis:cyber_protect:15:update2:*:*:*:*:*:*
- cpe:2.3:a:acronis:cyber_protect:15:update3:*:*:*:*:*:*
- cpe:2.3:a:acronis:cyber_protect:15:update4:*:*:*:*:*:*
- cpe:2.3:a:acronis:cyber_protect:15:update5:*:*:*:*:*:*
Acronis/Cyber Protect Home Office5 versions
cpe:2.3:a:acronis:cyber_protect_home_office:-:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:acronis:cyber_protect_home_office:-:*:*:*:*:*:*:*
- cpe:2.3:a:acronis:cyber_protect_home_office:39900:*:*:*:*:*:*:*
- cpe:2.3:a:acronis:cyber_protect_home_office:40107:*:*:*:*:*:*:*
- cpe:2.3:a:acronis:cyber_protect_home_office:40173:*:*:*:*:*:*:*
- cpe:2.3:a:acronis:cyber_protect_home_office:40208:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security-advisory.acronis.com/SEC-4858nvdRelease NotesVendor Advisory
security-advisory.acronis.com/advisories/SEC-5487nvdRelease NotesVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000