Vulnerabilities > Acronis

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-25	CVE-2020-9452	Link Following vulnerability in Acronis True Image 2020 24.5.22510 An issue was discovered in Acronis True Image 2020 24.5.22510. local low complexity acronis CWE-59	7.8
2021-02-22	CVE-2020-35664	Cross-site Scripting vulnerability in Acronis Cyber Protect 15 An issue was discovered in Acronis Cyber Protect before 15 Update 1 build 26172. network low complexity acronis CWE-79	6.1
2021-02-22	CVE-2020-35556	Unspecified vulnerability in Acronis Cyber Protect 15 An issue was discovered in Acronis Cyber Protect before 15 Update 1 build 26172. network low complexity acronis	7.5
2021-01-29	CVE-2020-35145	Uncontrolled Search Path Element vulnerability in Acronis True Image Acronis True Image for Windows prior to 2021 Update 3 allowed local privilege escalation due to a DLL hijacking vulnerability in multiple components, aka an Untrusted Search Path issue. local low complexity acronis CWE-427	7.8
2020-10-21	CVE-2020-10140	Incorrect Permission Assignment for Critical Resource vulnerability in Acronis True Image 2021 Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramData\Acronis directory. local low complexity acronis CWE-732	7.3
2020-10-21	CVE-2020-10139	Improper Initialization vulnerability in Acronis True Image 2021 Acronis True Image 2021 includes an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory within C:\jenkins_agent\. local low complexity acronis CWE-665	7.8
2020-10-21	CVE-2020-10138	Improper Initialization vulnerability in Acronis Cyber Backup and Cyber Protect Acronis Cyber Backup 12.5 and Cyber Protect 15 include an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory within C:\jenkins_agent\. local low complexity acronis CWE-665	7.8
2020-09-21	CVE-2020-16171	Server-Side Request Forgery (SSRF) vulnerability in Acronis Cyber Backup 12.5 An issue was discovered in Acronis Cyber Backup before 12.5 Build 16342. network low complexity acronis CWE-918	6.5
2017-06-21	CVE-2017-3219	Insufficient Verification of Data Authenticity vulnerability in Acronis True Image 2016/2017 Acronis True Image up to and including version 2017 Build 8053 performs software updates using HTTP. low complexity acronis CWE-345	8.8

Vulnerabilities > Acronis {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Acronis"}]}

Vulnerabilities > Acronis