VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Acronis
>
Cyber Protect
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-09-27
CVE-2023-44205
Authorization Bypass Through User-Controlled Key vulnerability in Acronis Cyber Protect 15
Sensitive information disclosure due to improper authorization.
network
low complexity
acronis
CWE-639
5.3
5.3
2023-09-27
CVE-2023-44207
Cross-site Scripting vulnerability in Acronis Cyber Protect 15
Stored cross-site scripting (XSS) vulnerability in protection plan name.
network
low complexity
acronis
CWE-79
5.4
5.4
2023-08-31
CVE-2023-41745
Exposure of Resource to Wrong Sphere vulnerability in Acronis Agent and Cyber Protect
Sensitive information disclosure due to excessive collection of system information.
local
low complexity
acronis
CWE-668
5.5
5.5
2022-05-18
CVE-2022-30991
Cross-site Scripting vulnerability in Acronis Cyber Protect 15
HTML injection via report name.
network
low complexity
acronis
CWE-79
6.1
6.1
2022-05-18
CVE-2022-30992
Open Redirect vulnerability in Acronis Cyber Protect 15
Open redirect via user-controlled query parameter.
network
low complexity
acronis
CWE-601
6.1
6.1
2021-11-29
CVE-2021-44199
Uncontrolled Search Path Element vulnerability in Acronis Agent, Cyber Protect and Cyber Protect Home Office
DLL hijacking could lead to denial of service.
local
low complexity
acronis
CWE-427
5.5
5.5
2021-11-29
CVE-2021-44200
Cross-site Scripting vulnerability in Acronis Cyber Protect 15
Self cross-site scripting (XSS) was possible on devices page.
network
low complexity
acronis
CWE-79
5.4
5.4
2021-11-29
CVE-2021-44201
Cross-site Scripting vulnerability in Acronis Cyber Protect 15
Cross-site scripting (XSS) was possible in notification pop-ups.
network
low complexity
acronis
CWE-79
6.1
6.1
2021-11-29
CVE-2021-44202
Cross-site Scripting vulnerability in Acronis Cyber Protect 15
Stored cross-site scripting (XSS) was possible in activity details.
network
low complexity
acronis
CWE-79
5.4
5.4
2021-11-29
CVE-2021-44203
Cross-site Scripting vulnerability in Acronis Cyber Protect 15
Stored cross-site scripting (XSS) was possible in protection plan details.
network
low complexity
acronis
CWE-79
5.4
5.4
«
Previous
1
2
(current)
3
»
Next