PT-2023-5317 · Acronis · Acronis Cloud Manager

Putsi

Publicado

2023-08-31

Atualizado

2023-09-06

CVE-2023-41748

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Acronis Cloud Manager (Windows) versions before 6.2.23089.203

Description The issue is related to remote command execution due to improper input validation. This allows a remote attacker to execute arbitrary commands.

Recommendations For Acronis Cloud Manager (Windows) versions before 6.2.23089.203, update to a version after build 6.2.23089.203 to resolve the issue. As a temporary workaround, consider restricting access to the system to minimize the risk of exploitation.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

BDU:2023-05943

CVE-2023-41748

Produtos afetados

Acronis Cloud Manager

PT-2023-5317 · Acronis · Acronis Cloud Manager

CVE-2023-41748

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6