Cyber Resilience

CVE-2026-27774

Medium

Published: 02 April 2026

Published
02 April 2026
Modified
20 April 2026
KEV Added
Patch
CVSS Score v3 6.7 CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS Score 0.0010 0.9th percentile
Risk Priority 35 floored blend · peak EPSS

Summary

CVE-2026-27774 is a medium-severity Uncontrolled Search Path Element (CWE-427) vulnerability in Acronis True Image. Its CVSS base score is 6.7 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique DLL (T1574.001); ranked at the 0.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image (Windows) before build 42902.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1574.001 DLL Stealth
Adversaries may abuse dynamic-link library files (DLLs) in order to achieve persistence, escalate privileges, and evade defenses.
T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

CVE directly describes local privilege escalation via DLL hijacking (CWE-427), mapping to DLL Side-Loading for execution flow hijack and exploitation for priv esc.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

Affected Assets

acronis
true image
≤ 2026

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References