PT-2023-5315 · Acronis · Acronis Cloud Manager
Putsi
·
Publicado
2023-08-31
·
Atualizado
2024-09-18
·
CVE-2023-41747
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Acronis Cloud Manager (Windows) versions before 6.2.23089.203
Description
The issue is related to sensitive information disclosure due to unauthenticated path traversal and improper input validation. This allows a remote attacker to access confidential information.
Recommendations
For versions before 6.2.23089.203, update to a version 6.2.23089.203 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive information until a patch is applied.
Correção
RCE
Path traversal
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Acronis Cloud Manager