Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
acronis vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2023-44212
Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 31477.
Acronis Agent
5.5
CVSSv3
CVE-2023-44213
Sensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 35739, Acronis Cyber Protect 16 (Windows) before build 37391.
Acronis Agent
8.8
CVSSv3
CVE-2017-3219
Acronis True Image up to and including version 2017 Build 8053 performs software updates using HTTP. Downloaded updates are only verified using a server-provided MD5 hash.
Acronis True Image
6.7
CVSSv3
CVE-2020-25593
Acronis True Image through 2021 on macOS allows local privilege escalation from admin to root due to insecure folder permissions.
Acronis True Image
NA
CVE-2008-1279
Acronis True Image Group Server 1.5.19.191 and previous versions, included in Acronis True Image Enterprise Server 9.5.0.8072 and the other True Image packages, allows remote malicious users to cause a denial of service (crash) via a packet with an invalid length field, which cau...
Acronis True Image
7.5
CVSSv3
CVE-2023-2360
Sensitive information disclosure due to CORS misconfiguration. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.2.0-135.
Acronis Cyber Infrastructure
7.8
CVSSv3
CVE-2020-35145
Acronis True Image for Windows before 2021 Update 3 allowed local privilege escalation due to a DLL hijacking vulnerability in multiple components, aka an Untrusted Search Path issue.
Acronis True Image
NA
CVE-2008-3671
Acronis True Image Echo Server 9.x build 8072 on Linux does not properly encrypt backups to an FTP server, which allows remote malicious users to obtain sensitive information. NOTE: the provenance of this information is unknown; the details are obtained solely from third party in...
Acronis True Image Echo Server 9.5.8072
5.5
CVSSv3
CVE-2023-2782
Sensitive information disclosure due to improper authorization. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.3.1-38.
Acronis Cyber Infrastructure
7.8
CVSSv3
CVE-2023-44209
Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 29051.
Acronis Agent C22.02
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »