← back
CVE-2025-7779

CVE-2025-7779

CVSS 8.8 HIGHEPSS 0.1%CWE-269
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.8EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
30 Sep 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Local privilege escalation due to insecure XPC service configuration. The following products are affected: Acronis True Image (macOS) before build 42389, Acronis True Image for SanDisk (macOS) before build 42198, Acronis True Image for Western Digital (macOS) before build 42197, Acronis True Image OEM (macOS) before build 42571.
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected products
Acronis · Acronis True ImageAcronis · Acronis True Image for SanDiskAcronis · Acronis True Image for Western DigitalAcronis · Acronis True Image OEM

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://security-advisory.acronis.com/advisories/SEC-8193