Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
acronis vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2020-16171
An issue exists in Acronis Cyber Backup prior to 12.5 Build 16342. Some API endpoints on port 9877 under /api/ams/ accept an additional custom Shard header. The value of this header is afterwards used in a separate web request issued by the application itself. This can be abused ...
Acronis Cyber Backup
Acronis Cyber Backup 12.5
4.6
CVSSv2
CVE-2020-15495
Acronis True Image 2019 update 1 through 2020 on macOS allows local privilege escalation due to an insecure XPC service configuration.
Acronis True Image 2019
Acronis True Image 2020
5
CVSSv2
CVE-2008-1280
Acronis True Image Windows Agent 1.0.0.54 and previous versions, included in Acronis True Image Enterprise Server 9.5.0.8072 and the other True Image packages, allows remote malicious users to cause a denial of service (crash) via a malformed packet to port 9876, which triggers a...
Acronis True Image
Acronis True Image Windows Agent
NA
CVE-2023-41747
Sensitive information disclosure due to improper input validation. The following products are affected: Acronis Cloud Manager (Windows) before build 6.2.23089.203.
Acronis Cloud Manager
NA
CVE-2023-41750
Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 32047.
Acronis Agent
NA
CVE-2023-41751
Sensitive information disclosure due to improper token expiration validation. The following products are affected: Acronis Agent (Windows) before build 32047.
Acronis Agent
5
CVSSv2
CVE-2021-34800
Sensitive information could be logged. The following products are affected: Acronis Agent (Windows, Linux, macOS) before build 27147
Acronis Agent
5
CVSSv2
CVE-2020-14999
A logic bug in system monitoring driver of Acronis Agent after 12.5.21540 and prior to 12.5.23094 allowed to bypass Windows memory protection and access sensitive data.
Acronis Agent
NA
CVE-2023-45245
Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 36119.
Acronis Agent
NA
CVE-2023-45248
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 36497, Acronis Cyber Protect 16 (Windows) before build 37391.
Acronis Agent
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »