Using the latest version of Acronis True Image 2021 (25.4.30480) is possible to perform EXE Hijacking.
This could potentially allow an authorized but privileged local user to execute arbitrary code with elevated privileges on the system.
A successful attempt would require the local attacker must insert an executable file in the path of the EXE that is called.
Upon the software installation or possibly upgrade, the malicious code will be run with elevated privileges.
https://hackerone.com/reports/970739