PT-2022-27522 · Acronis · Acronis Agent+2
Published
2022-11-17
·
Updated
2023-05-26
·
CVE-2022-45457
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Acronis Agent (Windows) versions before build 29633
Acronis Cyber Protect 15 (Windows) versions before build 30984
Description
The issue is related to sensitive information disclosure and manipulation due to improper certification validation.
Recommendations
For Acronis Agent (Windows) versions before build 29633, update to build 29633 or later.
For Acronis Cyber Protect 15 (Windows) versions before build 30984, update to build 30984 or later.
Fix
Improper Certificate Validation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acronis
Acronis Agent
Acronis Cyber Protect 15