CVE-2023-44213

🗓️ 05 Oct 2023 21:56:48Reported by AcronisType

Sensitive information disclosure in Acronis Agent (Windows) before build 35739

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerability of backup and data recovery software on computers and servers with Acronis Agent allows attackers to gain unauthorized access to protected information.	10 Oct 202300:00	–	bdu_fstec
CNNVD	Acronis Agent Security Vulnerability	5 Oct 202300:00	–	cnnvd
Cvelist	CVE-2023-44213	5 Oct 202321:56	–	cvelist
EUVD	EUVD-2023-48572	3 Oct 202520:07	–	euvd
NVD	CVE-2023-44213	5 Oct 202322:15	–	nvd
OSV	CVE-2023-44213	5 Oct 202322:15	–	osv
Prion	Information disclosure	5 Oct 202322:15	–	prion
Positive Technologies	PT-2023-5787 · Acronis · Acronis Cyber Protect 16 +2	5 Oct 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-44213	23 May 202504:38	–	redhatcve

NVD

Node

acronis agentRange<c23.06

AND

microsoft windowsMatch-

[
  {
    "vendor": "Acronis",
    "product": "Acronis Cyber Protect Cloud Agent",
    "platforms": [
      "Windows"
    ],
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "35739",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Acronis",
    "product": "Acronis Cyber Protect 16",
    "platforms": [
      "Windows"
    ],
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "37391",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
security-advisory	www.security-advisory.acronis.com/advisories/SEC-5286

21 Nov 2024 08:25Current

4Medium risk

Vulners AI Score4

CVSS 3.15.5

CVSS 33.3

EPSS0.0007

CWE-359