Vulnerabilities > Acronis
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-27 | CVE-2023-48679 | Unspecified vulnerability in Acronis Cyber Protect 15 Stored cross-site scripting (XSS) vulnerability due to missing origin validation in postMessage. | 5.4 |
| 2024-02-27 | CVE-2023-48680 | Unspecified vulnerability in Acronis Cyber Protect 15 Sensitive information disclosure due to excessive collection of system information. | 5.5 |
| 2024-02-27 | CVE-2023-48681 | Unspecified vulnerability in Acronis Cyber Protect 15 Self cross-site scripting (XSS) vulnerability in storage nodes search field. | 6.1 |
| 2024-02-27 | CVE-2023-48682 | Unspecified vulnerability in Acronis Cyber Protect 15 Stored cross-site scripting (XSS) vulnerability in unit name. | 5.4 |
| 2023-12-14 | CVE-2023-48676 | Missing Authorization vulnerability in Acronis Cyber Protect Cloud Agent 21/22/23 Sensitive information disclosure and manipulation due to missing authorization. | 7.1 |
| 2023-12-12 | CVE-2023-48677 | Unspecified vulnerability in Acronis Cyber Protect Home Office Local privilege escalation due to DLL hijacking vulnerability. | 7.8 |
| 2023-10-09 | CVE-2023-45247 | Missing Authorization vulnerability in Acronis Agent Sensitive information disclosure and manipulation due to missing authorization. | 7.1 |
| 2023-10-09 | CVE-2023-45248 | Uncontrolled Search Path Element vulnerability in Acronis Agent Local privilege escalation due to DLL hijacking vulnerability. | 7.3 |
| 2023-10-06 | CVE-2023-45246 | Missing Authorization vulnerability in Acronis Agent Sensitive information disclosure and manipulation due to missing authorization. | 7.1 |
| 2023-10-06 | CVE-2023-45244 | Missing Authorization vulnerability in Acronis Agent Sensitive information disclosure and manipulation due to missing authorization. | 7.1 |