Lucene search

[email protected]CVE-2022-45453

HistoryMay 18, 2023 - 10:15 a.m.

CVE-2022-45453

2023-05-1810:15:09

CWE-326

CWE-310

[email protected]

web.nvd.nist.gov

cve-2022-45453

tls

ssl

cipher suites

acronis cyber protect 15

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.3%

JSON

TLS/SSL weak cipher suites enabled. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 30984.

Affected configurations

NVD

Node

acroniscyber_protectRange<15

acroniscyber_protectMatch15-

acroniscyber_protectMatch15update1

acroniscyber_protectMatch15update2

acroniscyber_protectMatch15update3

acroniscyber_protectMatch15update4

AND

linuxlinux_kernelMatch-

microsoftwindowsMatch-

CPENameOperatorVersion
acronis:cyber_protectacronis cyber protectlt15

CPE	Name	Operator	Version
acronis:cyber_protect	acronis cyber protect	lt	15

CNA Affected

[
  {
    "vendor": "Acronis",
    "product": "Acronis Cyber Protect 15",
    "platforms": [
      "Windows",
      "Linux"
    ],
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "30984",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

security-advisory.acronis.com/advisories/SEC-5112

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.3%

JSON

Related for CVE-2022-45453

prion1 cvelist1 nvd1