Lucene search

[email protected]NVD:CVE-2023-45246

HistoryOct 06, 2023 - 11:15 a.m.

CVE-2023-45246

2023-10-0611:15:11

CWE-287

[email protected]

web.nvd.nist.gov

authentication

sensitive information

data manipulation

acronis agent

linux

macos

windows

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Sensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 36343.

Affected configurations

NVD

Node

acronisagentRange≤c23.08

AND

applemacosMatch-

linuxlinux_kernelMatch-

microsoftwindowsMatch-

References

security-advisory.acronis.com/advisories/SEC-5903

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2023-45246

prion1 cvelist1 cve1 kitploit1