Vulnerabilities > CVE-2020-35556 - Unspecified vulnerability in Acronis Cyber Protect 15

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

acronis

NVD

Published: 2021-02-22

Updated: 2021-07-21

Summary

An issue was discovered in Acronis Cyber Protect before 15 Update 1 build 26172. Because the local notification service misconfigures CORS, information disclosure can occur.

Vulnerable Configurations

Part	Description	Count
Application	Acronis Acronis Cyber Protect - Acronis Cyber Protect 15	2

References

https://www.acronis.com
https://dl.managed-protection.com/u/cyberprotect/rn/15/user/en-US/AcronisCyberProtect15_relnotes.htm