Cyber Protect Security Vulnerabilities and Issues — Cyber Protect CVE List

Lucene search

AcronisCyber Protect

12 matches found

CVE•added 2024/02/27 5:15 p.m.•94 views

CVE-2023-48682

Stored cross-site scripting (XSS) vulnerability in unit name. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 37391.

6.1CVSS5.9AI score0.00122EPSS

CVE•added 2024/02/27 5:15 p.m.•85 views

CVE-2023-48681

Self cross-site scripting (XSS) vulnerability in storage nodes search field. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 37391.

6.1CVSS3.9AI score0.00574EPSS

CVE•added 2022/05/18 8:15 p.m.•53 views

CVE-2022-30991

HTML injection via report name. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 29240

6.1CVSS6.5AI score0.00526EPSS

CVE•added 2022/05/18 8:15 p.m.•50 views

CVE-2022-30992

Open redirect via user-controlled query parameter. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 29240

6.1CVSS6.3AI score0.00197EPSS

CVE•added 2021/02/22 3:15 a.m.•49 views

CVE-2020-35664

An issue was discovered in Acronis Cyber Protect before 15 Update 1 build 26172. There is cross-site scripting (XSS) in the console.

6.1CVSS6AI score0.00317EPSS

CVE•added 2025/01/02 4:15 p.m.•45 views

CVE-2024-55541

Stored cross-site scripting (XSS) vulnerability due to missing origin validation in postMessage. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 39169.

6.1CVSS5.8AI score0.00042EPSS

CVE•added 2023/08/31 6:15 p.m.•43 views

CVE-2023-41745

Sensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 30991, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979.

6.1CVSS6AI score0.00029EPSS

CVE•added 2021/08/12 2:15 p.m.•38 views

CVE-2021-38087

Reflected cross-site scripting (XSS) was possible on the login page in Acronis Cyber Protect 15 prior to build 27009.

6.1CVSS5.9AI score0.00474EPSS

CVE•added 2023/09/27 3:19 p.m.•38 views

CVE-2023-44160

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

6.5CVSS4AI score0.00248EPSS

CVE•added 2023/09/27 3:19 p.m.•32 views

CVE-2023-44207

Stored cross-site scripting (XSS) vulnerability in protection plan name. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

6.7CVSS6.1AI score0.0021EPSS

CVE•added 2023/09/27 3:19 p.m.•29 views

CVE-2023-44161

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

6.5CVSS4AI score0.00248EPSS

CVE•added 2021/11/29 7:15 p.m.•24 views

CVE-2021-44201

Cross-site scripting (XSS) was possible in notification pop-ups. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 28035

6.1CVSS6.2AI score0.00526EPSS