PT-2022-27519 · Acronis · Acronis Cyber Protect 15+1
Published
2022-11-17
·
Updated
2023-05-26
·
CVE-2022-45453
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Acronis Cyber Protect 15 versions prior to build 30984
Description
The issue concerns TLS/SSL weak cipher suites being enabled. This affects Acronis Cyber Protect 15 on both Windows and Linux platforms.
Recommendations
For Acronis Cyber Protect 15 versions prior to build 30984, update to build 30984 or later to resolve the issue. As a temporary workaround, consider disabling the use of weak TLS/SSL cipher suites until a patch is available. Restrict access to sensitive data transmitted over TLS/SSL to minimize the risk of exploitation.
Fix
Inadequate Encryption Strength
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Acronis
Acronis Cyber Protect 15