Vulnerabilities > Acronis > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-29 | CVE-2021-44200 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Self cross-site scripting (XSS) was possible on devices page. | 5.4 |
| 2021-11-29 | CVE-2021-44201 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Cross-site scripting (XSS) was possible in notification pop-ups. | 6.1 |
| 2021-11-29 | CVE-2021-44202 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Stored cross-site scripting (XSS) was possible in activity details. | 5.4 |
| 2021-11-29 | CVE-2021-44203 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Stored cross-site scripting (XSS) was possible in protection plan details. | 5.4 |
| 2021-08-12 | CVE-2021-38087 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 Reflected cross-site scripting (XSS) was possible on the login page in Acronis Cyber Protect 15 prior to build 27009. | 6.1 |
| 2021-07-15 | CVE-2020-25593 | Incorrect Default Permissions vulnerability in Acronis True Image Acronis True Image through 2021 on macOS allows local privilege escalation from admin to root due to insecure folder permissions. | 6.7 |
| 2021-05-25 | CVE-2020-9451 | Incorrect Default Permissions vulnerability in Acronis True Image 2020 24.5.22510 An issue was discovered in Acronis True Image 2020 24.5.22510. | 5.5 |
| 2021-02-22 | CVE-2020-35664 | Cross-site Scripting vulnerability in Acronis Cyber Protect 15 An issue was discovered in Acronis Cyber Protect before 15 Update 1 build 26172. | 6.1 |
| 2020-09-21 | CVE-2020-16171 | Server-Side Request Forgery (SSRF) vulnerability in Acronis Cyber Backup 12.5 An issue was discovered in Acronis Cyber Backup before 12.5 Build 16342. | 6.5 |