CVE-2023-44212

Description

Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 31477.

CVSS breakdown

CVSS 3.0

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

Low

Affected products

Acronis / Acronis Agentunspecified – 31477

References

VENDOR_ADVISORYhttps://security-advisory.acronis.com/advisories/SEC-5528
MISChttps://security-advisory.acronis.com/SEC-2159