CVE-2022-45454

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Acronis Agent (Windows) versions before build 30161 Acronis Cyber Protect 15 (Windows) versions before build 30984

Description The issue is related to sensitive information disclosure due to insecure folder permissions.

Recommendations For Acronis Agent (Windows) versions before build 30161, update to build 30161 or later. For Acronis Cyber Protect 15 (Windows) versions before build 30984, update to build 30984 or later.

Fix

Incorrect Default Permissions

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276CWE-200

Related Identifiers

CVE-2022-45454

Affected Products

Acronis

Acronis Agent

Acronis Cyber Protect 15

CVE-2022-45454

Weakness Enumeration

Related Identifiers

Affected Products

References · 4