Acronis : Security Vulnerabilities, CVEs, CVSS score >= 8
Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40713.
Max CVSS
9.1
EPSS Score
0.09%
Published
2023-10-04
Updated
2023-10-05
Sensitive information disclosure and manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.
Max CVSS
9.1
EPSS Score
0.09%
Published
2023-09-27
Updated
2023-09-28
Sensitive information disclosure and manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.
Max CVSS
8.1
EPSS Score
0.05%
Published
2023-09-27
Updated
2023-10-26
Sensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979.
Max CVSS
9.1
EPSS Score
0.09%
Published
2023-09-27
Updated
2023-09-28
Remote command execution due to improper input validation. The following products are affected: Acronis Cloud Manager (Windows) before build 6.2.23089.203.
Max CVSS
9.8
EPSS Score
0.11%
Published
2023-08-31
Updated
2023-09-06
Remote command execution due to improper input validation. The following products are affected: Acronis Cloud Manager (Windows) before build 6.2.23089.203.
Max CVSS
9.8
EPSS Score
0.11%
Published
2023-08-31
Updated
2023-09-06
Local privilege escalation due to insecure driver communication port permissions. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40278, Acronis Agent (Windows) before build 31637, Acronis Cyber Protect 15 (Windows) before build 35979.
Max CVSS
8.8
EPSS Score
0.04%
Published
2023-08-31
Updated
2023-09-06
Local privilege escalation due to insecure driver communication port permissions. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40173, Acronis Agent (Windows) before build 30600, Acronis Cyber Protect 15 (Windows) before build 30984.
Max CVSS
8.8
EPSS Score
0.04%
Published
2023-08-31
Updated
2023-09-06
Sensitive information disclosure due to improper authentication. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 29486, Acronis Cyber Backup 12.5 (Windows, Linux) before build 16545.
Max CVSS
9.3
EPSS Score
0.09%
Published
2023-05-03
Updated
2023-05-09
Code execution and sensitive information disclosure due to excessive privileges assigned to Acronis Agent. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 29486, Acronis Cyber Backup 12.5 (Windows, Linux) before build 16545.
Max CVSS
9.3
EPSS Score
0.06%
Published
2023-05-03
Updated
2023-05-09
Acronis True Image prior to 2021 Update 4 for Windows, Acronis True Image prior to 2021 Update 5 for Mac, Acronis Agent prior to build 26653, Acronis Cyber Protect prior to build 27009 did not implement SSL certificate validation.
Max CVSS
8.1
EPSS Score
0.14%
Published
2021-08-05
Updated
2021-08-12
Acronis True Image up to and including version 2017 Build 8053 performs software updates using HTTP. Downloaded updates are only verified using a server-provided MD5 hash.
Max CVSS
8.8
EPSS Score
0.08%
Published
2017-06-21
Updated
2019-10-09
12 vulnerabilities found