VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Acronis
>
Cyber Protect
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-09-27
CVE-2023-44160
Cross-Site Request Forgery (CSRF) vulnerability in Acronis Cyber Protect 15
Sensitive information manipulation due to cross-site request forgery.
network
low complexity
acronis
CWE-352
6.5
6.5
2023-09-27
CVE-2023-44161
Cross-Site Request Forgery (CSRF) vulnerability in Acronis Cyber Protect 15
Sensitive information manipulation due to cross-site request forgery.
network
low complexity
acronis
CWE-352
6.5
6.5
2023-09-27
CVE-2023-44205
Authorization Bypass Through User-Controlled Key vulnerability in Acronis Cyber Protect 15
Sensitive information disclosure due to improper authorization.
network
low complexity
acronis
CWE-639
5.3
5.3
2023-09-27
CVE-2023-44207
Cross-site Scripting vulnerability in Acronis Cyber Protect 15
Stored cross-site scripting (XSS) vulnerability in protection plan name.
network
low complexity
acronis
CWE-79
5.4
5.4
2023-08-31
CVE-2023-41745
Exposure of Resource to Wrong Sphere vulnerability in Acronis Agent and Cyber Protect
Sensitive information disclosure due to excessive collection of system information.
local
low complexity
acronis
CWE-668
5.5
5.5
2022-05-18
CVE-2022-30991
Cross-site Scripting vulnerability in Acronis Cyber Protect 15
HTML injection via report name.
network
low complexity
acronis
CWE-79
6.1
6.1
2022-05-18
CVE-2022-30992
Open Redirect vulnerability in Acronis Cyber Protect 15
Open redirect via user-controlled query parameter.
network
acronis
CWE-601
5.8
5.8
2022-05-18
CVE-2022-30993
Cleartext Transmission of Sensitive Information vulnerability in Acronis Cyber Protect 15
Cleartext transmission of sensitive information.
network
low complexity
acronis
CWE-319
5.0
5.0
2022-05-18
CVE-2022-30994
Cleartext Transmission of Sensitive Information vulnerability in Acronis Cyber Protect 15
Cleartext transmission of sensitive information.
network
low complexity
acronis
CWE-319
5.0
5.0
2022-02-04
CVE-2021-44204
Unspecified vulnerability in Acronis products
Local privilege escalation via named pipe due to improper access control checks.
local
low complexity
acronis
4.6
4.6
«
1
(current)
2
»
Next