Agent

DATE	CVE	VULNERABILITY TITLE	RISK
2023-02-13	CVE-2022-45454	Incorrect Default Permissions vulnerability in Acronis Agent and Cyber Protect Sensitive information disclosure due to insecure folder permissions. network low complexity acronis CWE-276	7.5
2023-02-13	CVE-2022-45455	Incomplete Cleanup vulnerability in Acronis Agent, Cyber Protect and Cyber Protect Home Office Local privilege escalation due to incomplete uninstallation cleanup. local low complexity acronis CWE-459	7.8
2022-05-18	CVE-2022-30990	Incorrect Permission Assignment for Critical Resource vulnerability in Acronis Agent and Cyber Protect Sensitive information disclosure due to insecure folder permissions. network low complexity acronis CWE-732	7.5
2022-02-04	CVE-2021-44204	Unspecified vulnerability in Acronis products Local privilege escalation via named pipe due to improper access control checks. local low complexity acronis	7.8
2022-02-04	CVE-2022-24113	Incorrect Default Permissions vulnerability in Acronis products Local privilege escalation due to excessive permissions assigned to child processes. local low complexity acronis CWE-276	7.8
2021-11-29	CVE-2021-34800	Information Exposure Through Log Files vulnerability in Acronis Agent C21.03 Sensitive information could be logged. network low complexity acronis CWE-532	7.5
2021-11-29	CVE-2021-44199	Uncontrolled Search Path Element vulnerability in Acronis Agent, Cyber Protect and Cyber Protect Home Office DLL hijacking could lead to denial of service. local low complexity acronis CWE-427	5.5
2021-07-30	CVE-2020-14999	Unspecified vulnerability in Acronis Agent A logic bug in system monitoring driver of Acronis Agent after 12.5.21540 and before 12.5.23094 allowed to bypass Windows memory protection and access sensitive data. network low complexity acronis	7.5