CNNVD-202509-4464 Information

Sep 30, 2025 cve

CNNVD ID

CNNVD-202509-4464

CVE-2025-7779

CNNVD Published: 2025-09-30

Description (Chinese)

Acronis True Image是瑞士Acronis公司的一款著名的数据备份还原软件。该软件可用于创建驱动器和磁盘映像，并在需要干净系统时可以还原镜像。 Acronis True Image存在安全漏洞，该漏洞源于XPC服务配置不安全，可能导致本地权限提升。以下版本受到影响：Acronis True Image macOS 42389之前版本、Acronis True Image for SanDisk macOS 42198之前版本和Acronis True Image for Western Digital macOS 42197之前版本。

Description (English)

Acronis True Image is a well-known data backup software from the Swiss company Acronis. The software can be used to create drive and disk images and to restore mirror images when clean systems are needed. There is a security gap in Acronis True Image, which stems from the unsafe configuration of XPC services, which may lead to an increase in local authority. The following versions were affected: Pre-Acronis True Image Macos 42389, Pre-Acronis True Image for Sandisk MacOS 42198 and Pre-Acronis True Image for Western Digital Macos 42197.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Acronis

Published

2025-09-30

Last Modified

2026-02-24

References

https://security-advisory.acronis.com/advisories/SEC-8193

Patch

https://security-advisory.acronis.com/advisories/SEC-8193

Share on: