PT-2023-5793 · Acronis · Acronis Agent

Publicado

2023-10-05

Atualizado

2026-03-06

CVE-2023-45242

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Acronis Agent versions prior to build 35739

Description The issue is related to errors in authorization, which may allow an attacker to gain unauthorized access to protected information. This is due to missing authorization, leading to sensitive information disclosure.

Recommendations For versions prior to build 35739, update to a version that includes the necessary security fixes to address the authorization errors. As a temporary workaround, consider restricting access to sensitive information until a patch is available.

Correção

Missing Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-862

Identificadores relacionados

BDU:2023-06479

CVE-2023-45242

Produtos afetados

Acronis Agent

PT-2023-5793 · Acronis · Acronis Agent

CVE-2023-45242

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8