Vultza

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect 17 (Linux, Windows) versions prior to build 41186 **Description** The software suffers from improper authorization checks, leading to potential unauthorized resource manipulation. **Recommendations** Update Acronis Cyber Protect to build 41186 or later.

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect 17 versions prior to build 41186 **Description** A denial of service condition exists due to inadequate input validation within the authentication logging process. **Recommendations** Update Acronis Cyber Protect to build 41186 or later.

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect 17 versions prior to build 41186 **Description** An improper access control issue can lead to the disclosure of sensitive information. The vulnerability affects Acronis Cyber Protect 17 on both Linux and Windows operating systems. **Recommendations** Update Acronis Cyber Protect to build 41186 or later.

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect 17 versions prior to build 41186 **Description** A sensitive information disclosure can occur due to an improper configuration of a headless browser. **Recommendations** Update Acronis Cyber Protect to build 41186 or later.

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect versions prior to build 41186 **Description** The software suffers from insufficient access control validation, leading to unauthorized data access. **Recommendations** Update Acronis Cyber Protect to build 41186 or later.

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect versions prior to build 41186 **Description** Insufficient access control allows unauthorized deletion of reports. **Recommendations** Update to build 41186 or later.

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect 17 (Windows) versions prior to build 41186 **Description** A local privilege escalation can occur due to improper handling of soft links. This allows an attacker with local access to potentially gain elevated privileges on the system. **Recommendations** Update Acronis Cyber Protect 17 (Windows) to build 41186 or later.

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect 17 (Windows) versions prior to build 41186 **Description** A local privilege escalation can occur due to improper handling of soft links. This allows an attacker with local access to potentially gain elevated privileges on the system. **Recommendations** Update Acronis Cyber Protect 17 (Windows) to build 41186 or later.

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect 17 versions prior to build 41186 **Description** Insufficient authorization checks allow for unauthorized modification of settings. This impacts Acronis Cyber Protect 17 on both Linux and Windows operating systems. **Recommendations** Update Acronis Cyber Protect to build 41186 or later.

**Name of the Vulnerable Software and Affected Versions** Kibana Fleet (affected versions not specified) **Description** An issue in Kibana Fleet allows for excessive resource allocation through a specially crafted bulk retrieval request. An attacker with low-level privileges, such as the viewer role providing read access to agent policies, can trigger redundant database retrieval operations. This process consumes memory rapidly, leading to a server crash and resulting in a denial of service for all users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) versions prior to build 40296 Description: The issue involves local privilege escalation due to improper soft link handling. Recommendations: Update Acronis Cyber Protect Cloud Agent to build 40296 or later.

**Name of the Vulnerable Software and Affected Versions** Acronis Cyber Protect 16 versions prior to build 39938 **Description** The issue is related to a Server-Side Request Forgery (SSRF) vulnerability, which can lead to sensitive information disclosure. **Recommendations** For Acronis Cyber Protect 16 versions prior to build 39938, update to a version that includes build 39938 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mattermost versions 9.11.x through 9.11.10 Mattermost versions 10.4.x through 10.4.2 Mattermost versions 10.5.x through 10.5.0 **Description** The issue arises from the failure to validate the uniqueness and quantity of task actions within the "UpdateRunTaskActions" GraphQL operation. This allows an attacker to create task items that contain an excessive number of actions triggered by specific posts, leading to a denial-of-service (DoS) condition by overloading the server. **Recommendations** For versions 9.11.x through 9.11.10, update to a version that includes the fix for this issue. For versions 10.4.x through 10.4.2, update to a version that includes the fix for this issue. For versions 10.5.x through 10.5.0, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the "UpdateRunTaskActions" GraphQL operation to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Mattermost versions 10.5.x through 10.5.1 Mattermost versions 9.11.x through 9.11.9 Description: The issue allows an attacker who knows the IDs of deleted files to obtain metadata of the files via bookmark creation, as the software fails to check if a file has been deleted when creating a bookmark. Recommendations: For versions 10.5.x through 10.5.1, update to a version later than 10.5.1 to resolve the issue. For versions 9.11.x through 9.11.9, update to a version later than 9.11.9 to resolve the issue. As a temporary workaround, consider restricting access to bookmark creation functionality until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Mattermost versions 9.5.x through 9.5.12 Mattermost versions 9.11.x through 9.11.4 Mattermost versions 10.0.x through 10.0.2 Mattermost versions 10.1.x through 10.1.2 **Description** The issue is related to the lack of file size limitation for Slack import file uploads, which allows a user to cause a Denial of Service (DoS) via a zip bomb by importing data in a team they are an administrator of. **Recommendations** For Mattermost versions 9.5.x through 9.5.12, update to a version that limits the file size for Slack import file uploads to prevent DoS attacks. For Mattermost versions 9.11.x through 9.11.4, update to a version that limits the file size for Slack import file uploads to prevent DoS attacks. For Mattermost versions 10.0.x through 10.0.2, update to a version that limits the file size for Slack import file uploads to prevent DoS attacks. For Mattermost versions 10.1.x through 10.1.2, update to a version that limits the file size for Slack import file uploads to prevent DoS attacks.

**Name of the Vulnerable Software and Affected Versions** Mattermost versions 8.1.x through 8.1.12 Mattermost versions 9.5.x through 9.5.3 Mattermost versions 9.7.x through 9.7.1 **Description** The issue is related to a failure in performing proper authorization checks in the "/api/v4/groups/<group-id>/channels/<channel-id>/link" endpoint. This allows a user to determine the members of an AD/LDAP group linked to a team by adding the group to a channel, even if the user has no access to the team. **Recommendations** For versions 8.1.x through 8.1.12, update to a version that includes the fix for this issue. For versions 9.5.x through 9.5.3, update to a version that includes the fix for this issue. For versions 9.7.x through 9.7.1, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the "/api/v4/groups/<group-id>/channels/<channel-id>/link" endpoint until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Mattermost versions 8.1.x before 8.1.12 Mattermost versions 9.4.x before 9.4.5 Mattermost versions 9.5.x before 9.5.3 Mattermost versions 9.6.x before 9.6.1 **Description** The issue is related to the failure to limit the number of active sessions, which allows an authenticated attacker to crash the server via repeated requests to the "getSessions API" after flooding the sessions table. **Recommendations** For versions 8.1.x before 8.1.12, update to version 8.1.12 or later. For versions 9.4.x before 9.4.5, update to version 9.4.5 or later. For versions 9.5.x before 9.5.3, update to version 9.5.3 or later. For versions 9.6.x before 9.6.1, update to version 9.6.1 or later. As a temporary workaround, consider restricting access to the "getSessions API" to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mattermost Server versions 8.1.x through 8.1.10 Mattermost Server versions 9.3.x through 9.3.2 Mattermost Server versions 9.4.x through 9.4.3 Mattermost Server versions 9.5.x through 9.5.1 **Description** The issue arises because Mattermost Server does not limit the number of user preferences, allowing an attacker to send a large number of user preferences, potentially causing denial of service. **Recommendations** For versions 8.1.x through 8.1.10, update to version 8.1.11 or later. For versions 9.3.x through 9.3.2, update to version 9.3.3 or later. For versions 9.4.x through 9.4.3, update to version 9.4.4 or later. For versions 9.5.x through 9.5.1, update to version 9.5.2 or later.

**Name of the Vulnerable Software and Affected Versions** Mattermost versions 8.1.x through 8.1.9 Mattermost versions 9.2.x through 9.2.5 Mattermost versions 9.3.x through 9.3.1 Mattermost versions 9.4.x through 9.4.2 **Description** The issue allows an authenticated attacker to crash the client applications of other users via large, crafted messages, due to the failure to limit the number of @-mentions processed per message. **Recommendations** For Mattermost versions 8.1.x through 8.1.9, update to version 8.1.10 or later. For Mattermost versions 9.2.x through 9.2.5, update to version 9.2.6 or later. For Mattermost versions 9.3.x through 9.3.1, update to version 9.3.2 or later. For Mattermost versions 9.4.x through 9.4.2, update to version 9.4.3 or later.

**Name of the Vulnerable Software and Affected Versions** Mattermost versions prior to v8.1.9 **Description** The issue is related to a lack of proper authorization in requests fetching team-associated AD/LDAP groups, allowing a user to fetch details of AD/LDAP groups of a team they are not a member of. This can be exploited by a remote attacker to gain unauthorized access to user information. The vulnerable endpoint is related to the `/plugins/playbooks/api/v0/telemetry/run/` component. **Recommendations** For Mattermost versions prior to v8.1.9, update to version v8.1.9 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable `/plugins/playbooks/api/v0/telemetry/run/` endpoint until a patch is available. Avoid using this endpoint to fetch team-associated AD/LDAP groups until the issue is resolved.