Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
acronis vulnerabilities and exploits
(subscribe to this query)
392
VMScore
CVE-2021-44205
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 39612, Acronis True Image 2021 (Windows) before build 39287
Acronis True Image 2021
Acronis Cyber Protect Home Office -
392
VMScore
CVE-2021-44206
Local privilege escalation due to DLL hijacking vulnerability in Acronis Media Builder service. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 39612, Acronis True Image 2021 (Windows) before build 39287
Acronis True Image 2021
Acronis Cyber Protect Home Office -
383
VMScore
CVE-2021-38087
Reflected cross-site scripting (XSS) was possible on the login page in Acronis Cyber Protect 15 prior to build 27009.
Acronis Cyber Protect
Acronis Cyber Protect 15
409
VMScore
CVE-2022-30695
Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis Snap Deploy (Windows) before build 3640
Acronis Snap Deploy 6
Acronis Snap Deploy
392
VMScore
CVE-2022-30696
Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 3640
Acronis Snap Deploy 6
Acronis Snap Deploy
409
VMScore
CVE-2022-30697
Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy (Windows) before build 3640
Acronis Snap Deploy 6
Acronis Snap Deploy
445
VMScore
CVE-2020-35556
An issue exists in Acronis Cyber Protect prior to 15 Update 1 build 26172. Because the local notification service misconfigures CORS, information disclosure can occur.
Acronis Cyber Protect
Acronis Cyber Protect 15
383
VMScore
CVE-2020-35664
An issue exists in Acronis Cyber Protect prior to 15 Update 1 build 26172. There is cross-site scripting (XSS) in the console.
Acronis Cyber Protect
Acronis Cyber Protect 15
571
VMScore
CVE-2020-16171
An issue exists in Acronis Cyber Backup prior to 12.5 Build 16342. Some API endpoints on port 9877 under /api/ams/ accept an additional custom Shard header. The value of this header is afterwards used in a separate web request issued by the application itself. This can be abused ...
Acronis Cyber Backup
Acronis Cyber Backup 12.5
409
VMScore
CVE-2020-15496
Acronis True Image for Mac prior to 2021 Update 4 allowed local privilege escalation due to insecure folder permissions.
Acronis True Image
Acronis True Image 2021
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »