CVE-2020-10138 : Security Advisory and Response

Acronis Cyber Backup 12.5 and Cyber Protect 15 contain a vulnerability that allows arbitrary code execution with SYSTEM privileges.

Understanding CVE-2020-10138

Acronis Cyber Backup and Cyber Protect are affected by a privilege escalation vulnerability due to an OpenSSL component.

What is CVE-2020-10138?

The vulnerability in Acronis Cyber Backup 12.5 and Cyber Protect 15 allows unprivileged Windows users to execute arbitrary code with SYSTEM privileges by manipulating a specific file path.

The Impact of CVE-2020-10138

The vulnerability has a CVSS base score of 7.8, indicating a high severity issue with significant impacts on confidentiality, integrity, and availability of the affected systems.

Technical Details of CVE-2020-10138

Acronis Cyber Backup and Cyber Protect are susceptible to a privilege escalation vulnerability.

Vulnerability Description

The vulnerability arises from an OpenSSL component that specifies a directory path within the system, allowing users to exploit it for arbitrary code execution.

Affected Systems and Versions

Acronis Cyber Backup 12.5 (version less than 16363)
Acronis Cyber Protect 15 (version less than 24600)

Exploitation Mechanism

Unprivileged Windows users can create a specific path to a crafted file, enabling them to execute arbitrary code with SYSTEM privileges.

Mitigation and Prevention

Steps to address and prevent the CVE-2020-10138 vulnerability.

Immediate Steps to Take

Apply vendor-supplied patches promptly.
Monitor system activity for any signs of exploitation.
Restrict access to vulnerable systems.

Long-Term Security Practices

Regularly update and patch software to mitigate known vulnerabilities.
Implement the principle of least privilege to limit user access.

Patching and Updates

Acronis users should update to versions 12.5 (16363 or higher) for Cyber Backup and 15 (24600 or higher) for Cyber Protect to address the vulnerability.