Vulnerabilities > Acronis
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-29 | CVE-2024-34017 | Uncontrolled Search Path Element vulnerability in Acronis Snap Deploy 6 Local privilege escalation due to DLL hijacking vulnerability. | 7.3 |
| 2024-08-29 | CVE-2024-34018 | Incorrect Default Permissions vulnerability in Acronis Snap Deploy 6 Sensitive information disclosure due to insecure folder permissions. | 5.5 |
| 2024-08-29 | CVE-2024-34019 | Uncontrolled Search Path Element vulnerability in Acronis Snap Deploy 6 Local privilege escalation due to DLL hijacking vulnerability. | 7.3 |
| 2024-07-24 | CVE-2023-45249 | Improper Authentication vulnerability in Acronis Cyber Infrastructure Remote command execution due to use of default passwords. | 9.8 |
| 2024-06-14 | CVE-2024-34012 | Unspecified vulnerability in Acronis Cloud Manager Local privilege escalation due to insecure folder permissions. | 4.4 |
| 2024-02-27 | CVE-2023-48678 | Unspecified vulnerability in Acronis Cyber Protect 15 Sensitive information disclosure due to insecure folder permissions. | 5.5 |
| 2024-02-27 | CVE-2023-48679 | Unspecified vulnerability in Acronis Cyber Protect 15 Stored cross-site scripting (XSS) vulnerability due to missing origin validation in postMessage. | 5.4 |
| 2024-02-27 | CVE-2023-48680 | Unspecified vulnerability in Acronis Cyber Protect 15 Sensitive information disclosure due to excessive collection of system information. | 5.5 |
| 2024-02-27 | CVE-2023-48681 | Unspecified vulnerability in Acronis Cyber Protect 15 Self cross-site scripting (XSS) vulnerability in storage nodes search field. | 6.1 |
| 2024-02-27 | CVE-2023-48682 | Unspecified vulnerability in Acronis Cyber Protect 15 Stored cross-site scripting (XSS) vulnerability in unit name. | 5.4 |