Vulnerabilities > Acronis > Cyber Protect > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-03 | CVE-2022-3405 | Unspecified vulnerability in Acronis Cyber Backup and Cyber Protect Code execution and sensitive information disclosure due to excessive privileges assigned to Acronis Agent. low complexity acronis | 8.8 |
| 2023-02-13 | CVE-2022-45454 | Incorrect Default Permissions vulnerability in Acronis Agent and Cyber Protect Sensitive information disclosure due to insecure folder permissions. | 7.5 |
| 2023-02-13 | CVE-2022-45455 | Incomplete Cleanup vulnerability in Acronis Agent, Cyber Protect and Cyber Protect Home Office Local privilege escalation due to incomplete uninstallation cleanup. | 7.8 |
| 2022-05-18 | CVE-2022-30990 | Incorrect Permission Assignment for Critical Resource vulnerability in Acronis Agent and Cyber Protect Sensitive information disclosure due to insecure folder permissions. | 7.5 |
| 2022-05-18 | CVE-2022-30993 | Cleartext Transmission of Sensitive Information vulnerability in Acronis Cyber Protect 15 Cleartext transmission of sensitive information. | 7.5 |
| 2022-05-18 | CVE-2022-30994 | Cleartext Transmission of Sensitive Information vulnerability in Acronis Cyber Protect 15 Cleartext transmission of sensitive information. | 7.5 |
| 2022-02-04 | CVE-2021-44204 | Unspecified vulnerability in Acronis products Local privilege escalation via named pipe due to improper access control checks. | 7.8 |
| 2022-02-04 | CVE-2022-24113 | Incorrect Default Permissions vulnerability in Acronis products Local privilege escalation due to excessive permissions assigned to child processes. | 7.8 |
| 2021-11-29 | CVE-2021-44198 | Uncontrolled Search Path Element vulnerability in Acronis Cyber Protect 15 DLL hijacking could lead to local privilege escalation. | 7.8 |
| 2021-08-12 | CVE-2021-38086 | Uncontrolled Search Path Element vulnerability in Acronis Cyber Protect 15 Acronis Cyber Protect 15 for Windows prior to build 27009 and Acronis Agent for Windows prior to build 26226 allowed local privilege escalation via DLL hijacking. | 7.8 |