Cyber Protect@15 Security Vulnerabilities and Issues — Cyber Protect@15 CVE List

Lucene search

AcronisCyber Protect15

29 matches found

CVE•added 2023/05/03 11:15 a.m.•57 views

CVE-2022-3405

Code execution and sensitive information disclosure due to excessive privileges assigned to Acronis Agent. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 29486, Acronis Cyber Backup 12.5 (Windows, Linux) before build 16545.

9.3CVSS8.2AI score0.29609EPSS

CVE•added 2023/02/13 10:15 a.m.•47 views

CVE-2022-45455

Local privilege escalation due to incomplete uninstallation cleanup. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40107, Acronis Agent (Windows) before build 30025, Acronis Cyber Protect 15 (Windows) before build 30984.

7.8CVSS7.8AI score0.00061EPSS

CVE•added 2023/02/13 10:15 a.m.•46 views

CVE-2022-45454

Sensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis Agent (Windows) before build 30161, Acronis Cyber Protect 15 (Windows) before build 30984.

7.5CVSS7.2AI score0.00103EPSS

CVE•added 2023/08/31 6:15 p.m.•43 views

CVE-2023-41745

Sensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 30991, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979.

6.1CVSS6AI score0.00029EPSS

CVE•added 2023/09/27 3:19 p.m.•43 views

CVE-2023-44158

Sensitive information disclosure due to insufficient token field masking. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

7.5CVSS4AI score0.00279EPSS

CVE•added 2023/08/31 3:15 p.m.•42 views

CVE-2022-45451

Local privilege escalation due to insecure driver communication port permissions. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40173, Acronis Agent (Windows) before build 30600, Acronis Cyber Protect 15 (Windows) before build 30984.

8.8CVSS7.8AI score0.00179EPSS

CVE•added 2023/05/03 11:15 a.m.•41 views

CVE-2022-30995

Sensitive information disclosure due to improper authentication. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 29486, Acronis Cyber Backup 12.5 (Windows, Linux) before build 16545.

9.3CVSS7.2AI score0.46428EPSS

CVE•added 2023/08/31 4:15 p.m.•40 views

CVE-2023-41743

Local privilege escalation due to insecure driver communication port permissions. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40278, Acronis Agent (Windows) before build 31637, Acronis Cyber Protect 15 (Windows) before build 35979.

8.8CVSS8.8AI score0.00025EPSS

CVE•added 2023/09/27 3:19 p.m.•40 views

CVE-2023-44154

Sensitive information disclosure and manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

8.1CVSS4AI score0.00251EPSS

CVE•added 2023/09/27 3:19 p.m.•38 views

CVE-2023-44160

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

6.5CVSS4AI score0.00248EPSS

CVE•added 2023/09/27 3:19 p.m.•37 views

CVE-2023-44206

Sensitive information disclosure and manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

9.1CVSS6.7AI score0.00531EPSS

CVE•added 2023/09/27 3:19 p.m.•36 views

CVE-2023-44156

Sensitive information disclosure due to spell-jacking. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

7.5CVSS5.4AI score0.00236EPSS

CVE•added 2023/09/27 3:19 p.m.•36 views

CVE-2023-44157

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect 15 (Windows) before build 35979.

7.8CVSS4.5AI score0.00046EPSS

CVE•added 2023/09/27 3:19 p.m.•36 views

CVE-2023-44159

Sensitive information disclosure due to cleartext storage of sensitive information. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

7.5CVSS5.3AI score0.00132EPSS

CVE•added 2023/08/31 3:15 p.m.•35 views

CVE-2023-41742

Excessive attack surface due to binding to an unrestricted IP address. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 30430, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979.

7.5CVSS4.7AI score0.00094EPSS

CVE•added 2023/09/27 3:19 p.m.•35 views

CVE-2023-44152

Sensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979.

9.1CVSS6.1AI score0.00257EPSS

CVE•added 2023/09/27 3:19 p.m.•34 views

CVE-2023-44155

Sensitive information leak through log files. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

7.5CVSS4.7AI score0.00124EPSS

CVE•added 2023/05/18 10:15 a.m.•32 views

CVE-2022-45458

Sensitive information disclosure and manipulation due to improper certification validation. The following products are affected: Acronis Agent (Windows, macOS, Linux) before build 29633, Acronis Cyber Protect 15 (Windows, macOS, Linux) before build 30984.

7.5CVSS7.2AI score0.00123EPSS

CVE•added 2023/05/18 10:15 a.m.•32 views

CVE-2022-45459

Sensitive information disclosure due to insecure registry permissions. The following products are affected: Acronis Agent (Windows) before build 30025, Acronis Cyber Protect 15 (Windows) before build 30984.

7.5CVSS7.2AI score0.00088EPSS

CVE•added 2023/09/27 3:19 p.m.•32 views

CVE-2023-44207

Stored cross-site scripting (XSS) vulnerability in protection plan name. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

6.7CVSS6.1AI score0.0021EPSS

CVE•added 2023/08/31 4:15 p.m.•29 views

CVE-2023-41744

Local privilege escalation due to unrestricted loading of unsigned libraries. The following products are affected: Acronis Agent (macOS) before build 30600, Acronis Cyber Protect 15 (macOS) before build 35979.

7.8CVSS7.8AI score0.00016EPSS

CVE•added 2023/09/27 3:19 p.m.•29 views

CVE-2023-44161

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

6.5CVSS4AI score0.00248EPSS

CVE•added 2023/09/27 3:19 p.m.•29 views

CVE-2023-44205

Sensitive information disclosure due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

5.3CVSS4AI score0.00314EPSS

CVE•added 2023/09/27 3:19 p.m.•28 views

CVE-2023-44153

Sensitive information disclosure due to cleartext storage of sensitive information in memory. The following products are affected: Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979.

7.5CVSS3.7AI score0.00139EPSS

CVE•added 2023/05/18 10:15 a.m.•27 views

CVE-2022-45450

Sensitive information disclosure and manipulation due to improper authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 28610, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 30984.

7.5CVSS7.2AI score0.00123EPSS

CVE•added 2023/05/18 10:15 a.m.•27 views

CVE-2022-45452

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Agent (Windows) before build 30430, Acronis Cyber Protect 15 (Windows) before build 30984.

7.8CVSS7.8AI score0.00028EPSS

CVE•added 2023/05/18 10:15 a.m.•27 views

CVE-2022-45453

TLS/SSL weak cipher suites enabled. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 30984.

7.5CVSS7.5AI score0.00082EPSS

CVE•added 2023/05/18 10:15 a.m.•25 views

CVE-2022-45457

Sensitive information disclosure and manipulation due to improper certification validation. The following products are affected: Acronis Agent (Windows) before build 29633, Acronis Cyber Protect 15 (Windows) before build 30984.

7.5CVSS7.2AI score0.00123EPSS

CVE•added 2023/08/31 9:15 p.m.•23 views

CVE-2023-41749

Sensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Agent (Windows) before build 32047, Acronis Cyber Protect 15 (Windows) before build 35979.

7.5CVSS4.6AI score0.0006EPSS