Lucene search
K

32960 matches found

NVD
NVD
added 2026/03/06 12:16 a.m.6 views

CVE-2025-11790

Credentials are not deleted from Acronis Agent after plan revocation. The following products are affected: Acronis Cyber Protect Cloud Agent Linux, macOS, Windows before build 41124...

4.4CVSS0.00114EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.6 views

Acronis Cyber Protect和Acronis Cyber Protect Cloud Agent 安全漏洞

Acronis Cyber Protect and Acronis Cyber Protect Cloud Agent are both products of Swiss company Acronis. Acronis Cyber Protect is an integrated network protection solution for businesses and enterprises. It combines features such as backup, anti-malware, network security, and endpoint management...

7.8CVSS7.1AI score0.00105EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/05 11:47 p.m.4 views

CVE-2025-11790

Credentials are not deleted from Acronis Agent after plan revocation. The following products are affected: Acronis Cyber Protect Cloud Agent Linux, macOS, Windows before build 41124...

4.4CVSS5.8AI score0.00114EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/05 11:47 p.m.7 views

CVE-2025-11790

Credentials are not deleted from Acronis Agent after plan revocation. The following products are affected: Acronis Cyber Protect Cloud Agent Linux, macOS, Windows before build 41124...

4.4CVSS5.9AI score0.00114EPSS
Exploits0References3
CVE
CVE
added 2026/03/05 11:46 p.m.11 views

CVE-2025-11791

CVE-2025-11791 affects Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186 and Acronis Cyber Protect Cloud Agent before build 41124. The root cause is insufficient authorization checks, yielding potential sensitive information disclosure and manipulation. In Red Hat, NVD, ENISA, a...

7.1CVSS5.9AI score0.00093EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2026/03/05 11:45 p.m.5 views

CVE-2026-28727

Local privilege escalation due to insecure Unix socket permissions. The following products are affected: Acronis Cyber Protect 17 macOS before build 41186, Acronis Cyber Protect Cloud Agent macOS before build 41124, Acronis True Image macOS before build 42902...

7.8CVSS7.1AI score0.00105EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/05 11:45 p.m.28 views

CVE-2026-28727

Local privilege escalation due to insecure Unix socket permissions. The following products are affected: Acronis Cyber Protect 17 macOS before build 41186, Acronis Cyber Protect Cloud Agent macOS before build 41124, Acronis True Image macOS before build 42902...

7.8CVSS0.00105EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/05 6:31 p.m.7 views

EUVD-2026-9838

Insufficient Verification of Data Authenticity, Improper Handling of Exceptional Conditions vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Heartbeat sync loop, strategy processing modules allows Protocol Manipulation. This vulnerability is...

8.2CVSS5.9AI score0.00288EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/05 6:31 p.m.7 views

EUVD-2026-9829

Cleartext Transmission of Sensitive Information vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Heartbeat sync loop modules allows Sniffing Attacks. This vulnerability is associated with program files src/hbbshttp/sync.Rs and program routine...

8.7CVSS5.9AI score0.00271EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/05 6:31 p.m.6 views

EUVD-2026-9835

Improper Restriction of Excessive Authentication Attempts, Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-server-pro RustDesk Server Pro rustdesk-server-pro on Windows, MacOS, Linux Peer authentication, API login modules, rustdesk-server RustDesk Server OSS...

9.3CVSS5.9AI score0.00225EPSS
Exploits0References2
OSV
OSV
added 2026/03/05 4:16 p.m.4 views

CVE-2026-30798

Insufficient Verification of Data Authenticity, Improper Handling of Exceptional Conditions vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Heartbeat sync loop, strategy processing modules allows Protocol Manipulation. This vulnerability is...

7.5CVSS5.8AI score
Exploits0References3
OSV
OSV
added 2026/03/05 4:16 p.m.3 views

CVE-2026-30794

Improper Certificate Validation vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android HTTP API client, TLS transport modules allows Adversary in the Middle AiTM. This vulnerability is associated with program files src/hbbshttp/httpclient.Rs and...

9.1CVSS5.8AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/05 4:4 p.m.5 views

CVE-2026-30785

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution', Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk, hbbcommon on Windows, MacOS, Linux Password security module, config encryption, machine U...

8.2CVSS6AI score0.00083EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/03/05 3:52 p.m.6 views

CVE-2026-30783

A vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient Client signaling, API sync loop, config management modules allows Privilege Abuse. This vulnerability is associated with program files src/rendezvousmediator.Rs, src/hbbshttp/sync....

9.8CVSS5.8AI score0.00376EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/05 3:52 p.m.6 views

CVE-2026-30783 RustDesk Client Can Orphan API Channel to Ignore All Admin Commands and ACL Policies

A vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient Client signaling, API sync loop, config management modules allows Privilege Abuse. This vulnerability is associated with program files src/rendezvousmediator.Rs, src/hbbshttp/sync....

4.8CVSS5.8AI score0.00376EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/05 3:49 p.m.7 views

CVE-2026-30790

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

9.8CVSS5.7AI score0.00225EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/05 3:49 p.m.35 views

CVE-2026-30790

...

0.00225EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/03/05 3:38 p.m.5 views

CVE-2026-30798 RustDesk Client Accepts Unauthenticated stop-service Command via Strategy Payload

Insufficient Verification of Data Authenticity, Improper Handling of Exceptional Conditions vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Heartbeat sync loop, strategy processing modules allows Protocol Manipulation. This vulnerability is...

8.2CVSS5.8AI score0.00288EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/05 3:30 p.m.7 views

CVE-2026-30796

Cleartext Transmission of Sensitive Information, Insufficiently Protected Credentials vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Address book sync, Heartbeat sync loop modules allows Sniffing Attacks. The client places the preset...

9.3CVSS5.8AI score0.00455EPSS
Exploits2References4
CVE
CVE
added 2026/03/05 3:27 p.m.18 views

CVE-2026-30795

The CVE concerns the RustDesk Client (rustdesk-client) across Windows, macOS, Linux, iOS, and Android. The vulnerability affects the Heartbeat sync loop modules, specifically the src/hbbs_http/sync.Rs code path and the Heartbeat JSON payload construction, where cleartext transmission of sensitive...

8.7CVSS5.9AI score0.00271EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder