Description
Remote command execution due to use of default passwords. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.0.1-61, Acronis Cyber Infrastructure (ACI) before build 5.1.1-71, Acronis Cyber Infrastructure (ACI) before build 5.2.1-69, Acronis Cyber Infrastructure (ACI) before build 5.3.1-53, Acronis Cyber Infrastructure (ACI) before build 5.4.4-132.
CVSS breakdown
CVSS 3.0
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Acronis / Acronis Cyber Infrastructureunspecified β 5.0.1-61
- Acronis / Acronis Cyber Infrastructureunspecified β 5.1.1-71
- Acronis / Acronis Cyber Infrastructureunspecified β 5.2.1-69
- Acronis / Acronis Cyber Infrastructureunspecified β 5.3.1-53
- Acronis / Acronis Cyber Infrastructureunspecified β 5.4.4-132
Exploits & PoCs
- nucleiAcronis Cyber Infrastructure - Default Passwordby darses