An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe exposes a REST API that can be used by everyone, even unprivileged users. This API is used to communicate from the GUI to anti_ransomware_service.exe. This can be exploited to add an arbitrary malicious executable to the whitelist, or even exclude an entire drive from being monitored by anti_ransomware_service.exe.
References
Link | Resource |
---|---|
https://danishcyberdefence.dk/blog | Third Party Advisory |
https://madsjoensen.dk/cve-2020-9450/ | Exploit Third Party Advisory |
https://www.acronis.com | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-05-25T11:08:01
Updated: 2021-05-25T11:08:01
Reserved: 2020-02-28T00:00:00
Link: CVE-2020-9450
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-25T12:15:07.740
Modified: 2021-05-28T17:40:29.193
Link: CVE-2020-9450
JSON object: View
Redhat Information
No data.
CWE