What is the CVSS score of CVE-2025-11792?

CVE-2025-11792 has a CVSS 3.0 base score of 7.3 (High). CVSS vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Windows are affected by CVE-2025-11792?

A local privilege escalation vulnerability in Acronis Cyber Protect Cloud Agent allows attackers with local system access to gain elevated privileges through DLL hijacking.

How to fix or mitigate CVE-2025-11792?

Within 24 hours: Inventory all Windows systems running Acronis Cyber Protect Cloud Agent and identify those below build 41124. Within 7 days: Implement application whitelisting and restrict write permissions to agent installation directories to prevent DLL injection. Within 30 days: Monitor Acronis security advisories for patch release and prepare for immediate deployment; consider isolating high-risk systems or evaluating alternative backup solutions if vendor patch timeline is unacceptable.

Windows CVE-2025-11792

HIGH

Uncontrolled Search Path Element (CWE-427)

2026-03-06 security@acronis.com

Windows Privilege Escalation Agent

7.3

CVSS 3.0

CVSS VectorNVD

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:06 vuln.today

CVE Published

Mar 06, 2026 - 00:16 nvd

HIGH 7.3

DescriptionNVD

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 41124.

AnalysisAI

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 41124. [CVSS 7.3 HIGH]

Technical ContextAI

Classified as CWE-427 (Uncontrolled Search Path Element). Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 41124.

RemediationAI

Monitor vendor advisories for a patch.

CVE-2025-11792 vulnerability details – vuln.today

Back

Windows CVE-2025-11792

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code