Acronis · Acronis Cyber Protect 15 · CVE-2021-44202
Name of the Vulnerable Software and Affected Versions:
Acronis Cyber Protect 15 versions prior to build 28035
Description:
A stored cross-site scripting (XSS) issue was possible in activity details. This could potentially allow attackers to inject malicious scripts into the application.
Recommendations:
For Acronis Cyber Protect 15 versions prior to build 28035, update to a version that is build 28035 or later to resolve the issue. As a temporary workaround, consider restricting access to activity details until a patch is available.