{"cve":{"cve_id":"CVE-2025-11178","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00166,"epss_percentile":0.06097,"epss_as_of":"2026-06-23","description":"Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image (Windows) before build 42386, Acronis True Image for Western Digital (Windows) before build 42636, Acronis True Image for SanDisk (Windows) before build 42679, Acronis True Image OEM (Windows) before build 42575.","published_at":"2025-09-30T14:52:20.711000Z","last_modified_at":null,"cvss_v3_score":7.3,"cvss_v3_vector":"CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-427"],"nvd_references":["https://security-advisory.acronis.com/advisories/SEC-7078"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:25:10.357693Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"R","value_label":"Required"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"acronis","vendor_name":"Acronis","product_slug":"acronis-true-image","product_name":"Acronis True Image","version_start":"unspecified","version_start_inclusive":true,"version_end":"42386","version_end_inclusive":false,"cpe23_uri":"cve5:acronis:acronis-true-image:unspecified:42386"},{"vendor_slug":"acronis","vendor_name":"Acronis","product_slug":"acronis-true-image-for-sandisk","product_name":"Acronis True Image for SanDisk","version_start":"unspecified","version_start_inclusive":true,"version_end":"42679","version_end_inclusive":false,"cpe23_uri":"cve5:acronis:acronis-true-image-for-sandisk:unspecified:42679"},{"vendor_slug":"acronis","vendor_name":"Acronis","product_slug":"acronis-true-image-for-western-digital","product_name":"Acronis True Image for Western Digital","version_start":"unspecified","version_start_inclusive":true,"version_end":"42636","version_end_inclusive":false,"cpe23_uri":"cve5:acronis:acronis-true-image-for-western-digital:unspecified:42636"},{"vendor_slug":"acronis","vendor_name":"Acronis","product_slug":"acronis-true-image-oem","product_name":"Acronis True Image OEM","version_start":"unspecified","version_start_inclusive":true,"version_end":"42575","version_end_inclusive":false,"cpe23_uri":"cve5:acronis:acronis-true-image-oem:unspecified:42575"}],"exploit_refs":[],"news":[],"references":[{"url":"https://security-advisory.acronis.com/advisories/SEC-7078","source_type":"VENDOR_ADVISORY","tags":["advisory"]}],"timeline":[{"type":"published","at":"2025-09-30T14:52:20.711000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:41:05.395916Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:41:05.395916Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:41:05.395916Z","label":"CVSS score revised","source":"cvelistv5"}]}