Vulnerabilities > Acronis > Cyber Protect > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-29 | CVE-2021-44199 | Uncontrolled Search Path Element vulnerability in Acronis Agent, Cyber Protect and Cyber Protect Home Office DLL hijacking could lead to denial of service. | 5.5 |
| 2021-11-29 | CVE-2021-44200 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Self cross-site scripting (XSS) was possible on devices page. | 5.4 |
| 2021-11-29 | CVE-2021-44201 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Cross-site scripting (XSS) was possible in notification pop-ups. | 6.1 |
| 2021-11-29 | CVE-2021-44202 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Stored cross-site scripting (XSS) was possible in activity details. | 5.4 |
| 2021-11-29 | CVE-2021-44203 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Stored cross-site scripting (XSS) was possible in protection plan details. | 5.4 |
| 2021-08-12 | CVE-2021-38087 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Reflected cross-site scripting (XSS) was possible on the login page in Acronis Cyber Protect 15 prior to build 27009. | 6.1 |
| 2021-02-22 | CVE-2020-35664 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 An issue was discovered in Acronis Cyber Protect before 15 Update 1 build 26172. | 6.1 |