CVE-2022-45451 HIGH

CVE-2022-45451

Vendor Acronis
Product Acronis Cyber Protect Home Office
Weakness CWE-269
Published August 31, 2023
Last update October 1, 2024
View on NVD All CVEs

CVSS base score

8.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

Local privilege escalation due to insecure driver communication port permissions. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40173, Acronis Agent (Windows) before build 30600, Acronis Cyber Protect 15 (Windows) before build 30984.

Key dates

02Disclosure timeline

August 31, 2023 CVE published
October 1, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-64487 Outline is vulnerable to privilege escalation vulnerability in document sharing CVE-2023-43663 Improper Privilege Management in Prestashop CVE-2026-45395 Open WebUI: Missing `workspace.tools` Authorization Check on Tool Update Endpoint Allows Privilege Escalation to Code Execution CVE-2024-0622 Local privilege escalation vulnerability could affect OpenText Operations Agent on Non-Windows platforms. CVE-2025-20346 Cisco Catalyst Center Privilege Escalation Vulnerability