Vulnerabilities > CVE-2024-49383 - Unspecified vulnerability in Acronis Cyber Protect 16

047910
CVSS 4.3 - MEDIUM
Attack vector
ADJACENT_NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
low complexity
acronis

Summary

Excessive attack surface in acep-importer service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690.

Vulnerable Configurations

Part Description Count
Application
Acronis
2
OS
Linux
1
OS
Microsoft
1