Description
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227.
Published: 2026-06-03
Score: 7.3 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The flaw allows a local attacker to place a malicious DLL in a directory that the Acronis DeviceLock DLP application will load, resulting in execution of arbitrary code with elevated privileges. This is a classic DLL hijacking vulnerability (CWE‑427) and can be leveraged to gain system-level access, compromising user confidentiality, integrity, and availability.

Affected Systems

Acronis DeviceLock DLP for Windows, any build older than 9.0.15051.93227.

Risk and Exploitability

The CVSS score of 7.3 indicates a high severity local privilege escalation. The EPSS score is not available, but the absence of a KEV listing suggests no current widespread exploitation. Attack requires local user access and write permissions to the DLL loading directory; once executed, the attacker can run code with SYSTEM rights.

Generated by OpenCVE AI on June 3, 2026 at 21:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade DeviceLock DLP to build 9.0.15051.93227 or later.
  • Restrict write permissions on folders from which Acronis loads DLLs to prevent unauthorized DLL placement.
  • Implement AppLocker or Software Restriction Policies to allow only signed, trusted DLLs to be loaded by the application.

Generated by OpenCVE AI on June 3, 2026 at 21:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 03 Jun 2026 21:45:00 +0000

Type Values Removed Values Added
Title DLL Hijacking Leading to Local Privilege Escalation in Acronis DeviceLock DLP
First Time appeared Acronis
Acronis acronis Devicelock Dlp
Vendors & Products Acronis
Acronis acronis Devicelock Dlp

Wed, 03 Jun 2026 20:15:00 +0000

Type Values Removed Values Added
Description Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227.
Weaknesses CWE-427
References
Metrics cvssV3_0

{'score': 7.3, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H'}

Subscriptions

Acronis Acronis Devicelock Dlp
cve-icon MITRE

Status: PUBLISHED

Assigner: Acronis

Published:

Updated: 2026-06-03T19:26:29.712Z

Reserved: 2026-06-03T16:03:02.124Z

Link: CVE-2026-44682

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-03T20:16:21.557

Modified: 2026-06-03T20:16:21.557

Link: CVE-2026-44682

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-03T21:30:32Z

Weaknesses