{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33092", "assignerOrgId": "73dc0fef-1c66-4a72-9d2d-0a0f4012c175", "state": "PUBLISHED", "assignerShortName": "Acronis", "dateReserved": "2026-04-01T00:44:58.740Z", "datePublished": "2026-04-10T13:17:45.275Z", "dateUpdated": "2026-04-14T03:55:40.860Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "73dc0fef-1c66-4a72-9d2d-0a0f4012c175", "shortName": "Acronis", "dateUpdated": "2026-04-10T13:17:45.275Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-15", "description": "CWE-15", "type": "CWE"}]}], "affected": [{"vendor": "Acronis", "product": "Acronis True Image OEM", "platforms": ["macOS"], "versions": [{"version": "unspecified", "status": "affected", "lessThan": "42571", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Acronis", "product": "Acronis True Image", "platforms": ["macOS"], "versions": [{"version": "unspecified", "status": "affected", "lessThan": "42902", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "Local privilege escalation due to improper handling of environment variables. The following products are affected: Acronis True Image OEM (macOS) before build 42571, Acronis True Image (macOS) before build 42902."}], "references": [{"url": "https://security-advisory.acronis.com/advisories/SEC-9407", "name": "SEC-9407", "tags": ["vendor-advisory"]}], "credits": [{"lang": "en", "value": "@aiqitut (https://hackerone.com/aiqitut)", "type": "finder"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_0": {"version": "3.0", "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}}], "x_generator": {"engine": "cvelib 1.8.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-13T00:00:00+00:00", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3", "id": "CVE-2026-33092"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T03:55:40.860Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-33092", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-10T14:02:38.936609Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-10T14:02:43.216Z"}}], "cna": {"credits": [{"lang": "en", "type": "finder", "value": "@aiqitut (https://hackerone.com/aiqitut)"}], "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Acronis", "product": "Acronis True Image OEM", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "42571", "versionType": "semver"}], "platforms": ["macOS"], "defaultStatus": "unaffected"}, {"vendor": "Acronis", "product": "Acronis True Image", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "42902", "versionType": "semver"}], "platforms": ["macOS"], "defaultStatus": "unaffected"}], "references": [{"url": "https://security-advisory.acronis.com/advisories/SEC-9407", "name": "SEC-9407", "tags": ["vendor-advisory"]}], "x_generator": {"engine": "cvelib 1.8.0"}, "descriptions": [{"lang": "en", "value": "Local privilege escalation due to improper handling of environment variables. The following products are affected: Acronis True Image OEM (macOS) before build 42571, Acronis True Image (macOS) before build 42902."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-15", "description": "CWE-15"}]}], "providerMetadata": {"orgId": "73dc0fef-1c66-4a72-9d2d-0a0f4012c175", "shortName": "Acronis", "dateUpdated": "2026-04-10T13:17:45.275Z"}}}, "cveMetadata": {"cveId": "CVE-2026-33092", "state": "PUBLISHED", "dateUpdated": "2026-04-14T03:55:40.860Z", "dateReserved": "2026-04-01T00:44:58.740Z", "assignerOrgId": "73dc0fef-1c66-4a72-9d2d-0a0f4012c175", "datePublished": "2026-04-10T13:17:45.275Z", "assignerShortName": "Acronis"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Local privilege escalation due to improper handling of environment variables. The following products are affected: Acronis True Image OEM (macOS) before build 42571, Acronis True Image (macOS) before build 42902."}], "id": "CVE-2026-33092", "lastModified": "2026-04-13T15:02:06.187", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "security@acronis.com", "type": "Secondary"}]}, "published": "2026-04-10T14:16:34.880", "references": [{"source": "security@acronis.com", "url": "https://security-advisory.acronis.com/advisories/SEC-9407"}], "sourceIdentifier": "security@acronis.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-15"}], "source": "security@acronis.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": ["macos"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,42571)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Acronis True Image OEM", "source": "cna", "vendor": "Acronis"}, "product": "acronis_true_image_oem", "vendor": "acronis"}, {"configurations": [{"platform": ["macos"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,42902)"}}], "enrichment": {"confidence": 82.0, "confidence_source": "matching", "scores": [{"score": 82.0, "source": "matching"}]}, "original": {"product": "Acronis True Image", "source": "cna", "vendor": "Acronis"}, "product": "true_image", "vendor": "acronis"}], "analysis": {"en": {"generated_at": "2026-04-10T14:37:02.804594+00:00", "value": {"mitigation_remediation": ["Update Acronis True Image to build 42902 or newer for macOS, and update True Image OEM to build 42571 or newer.", "Verify the installed build numbers to confirm the vulnerability has been resolved.", "If an immediate update is not possible, restrict untrusted users from launching the application with altered environment variables."], "summary": {"action": "Immediate Patch", "impact": "Local Privilege Escalation"}, "threat_synthesis": {"affected_systems": "The vulnerability affects Acronis True Image for macOS versions prior to build 42902 and Acronis True Image OEM for macOS versions prior to build 42571. Only the macOS editions are listed as impacted; other operating systems are not mentioned.", "description_and_impact": "An attacker can elevate privileges on an affected macOS system by exploiting improper handling of environment variables. The flaw allows a local user to acquire higher privileges, potentially controlling the machine, and stems from incorrect system configuration handling as described by CWE-15.", "risk_and_exploitability": "The CVSS base score of 7.8 denotes high severity. EPSS data is unavailable and the issue is not in the CISA KEV catalog. Attackers need local access and can manipulate environment variables to trigger the flaw, making the vector local and the risk significant enough to warrant swift remediation."}}}}, "created": "2026-04-13T12:44:54.835664+00:00", "title": "Local Privilege Escalation via Improper Environment Variable Handling in Acronis True Image on macOS", "updated": "2026-04-13T13:06:03.248340+00:00", "vendors": ["acronis", "acronis$PRODUCT$acronis_true_image_oem", "acronis$PRODUCT$true_image"]}