{"cve":{"cve_id":"CVE-2023-48677","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.0025,"epss_percentile":0.16007,"epss_as_of":"2026-06-23","description":"Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40901, Acronis Cyber Protect Cloud Agent (Windows) before build 39378, Acronis Cyber Protect 16 (Windows) before build 39938, Acronis True Image OEM (Windows) before build 42575.","published_at":"2023-12-12T08:33:17.191000Z","last_modified_at":null,"cvss_v3_score":7.3,"cvss_v3_vector":"CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-427"],"nvd_references":["https://security-advisory.acronis.com/advisories/SEC-5620"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:21:01.389058Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"R","value_label":"Required"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"acronis","vendor_name":"Acronis","product_slug":"acronis-cyber-protect-16","product_name":"Acronis Cyber Protect 16","version_start":"unspecified","version_start_inclusive":true,"version_end":"39938","version_end_inclusive":false,"cpe23_uri":"cve5:acronis:acronis-cyber-protect-16:unspecified:39938"},{"vendor_slug":"acronis","vendor_name":"Acronis","product_slug":"acronis-cyber-protect-cloud-agent","product_name":"Acronis Cyber Protect Cloud Agent","version_start":"unspecified","version_start_inclusive":true,"version_end":"39378","version_end_inclusive":false,"cpe23_uri":"cve5:acronis:acronis-cyber-protect-cloud-agent:unspecified:39378"},{"vendor_slug":"acronis","vendor_name":"Acronis","product_slug":"acronis-cyber-protect-home-office","product_name":"Acronis Cyber Protect Home Office","version_start":"unspecified","version_start_inclusive":true,"version_end":"40901","version_end_inclusive":false,"cpe23_uri":"cve5:acronis:acronis-cyber-protect-home-office:unspecified:40901"},{"vendor_slug":"acronis","vendor_name":"Acronis","product_slug":"acronis-true-image-oem","product_name":"Acronis True Image OEM","version_start":"unspecified","version_start_inclusive":true,"version_end":"42575","version_end_inclusive":false,"cpe23_uri":"cve5:acronis:acronis-true-image-oem:unspecified:42575"}],"exploit_refs":[],"news":[],"references":[{"url":"https://security-advisory.acronis.com/advisories/SEC-5620","source_type":"VENDOR_ADVISORY","tags":["advisory"]}],"timeline":[{"type":"published","at":"2023-12-12T08:33:17.191000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:30:41.329074Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:30:41.329074Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:30:41.329074Z","label":"CVSS score revised","source":"cvelistv5"}]}