CVE-2023-41751

Name of the Vulnerable Software and Affected Versions Acronis Agent versions prior to build 32047

Description The issue is related to insufficient authentication procedure in the backup and recovery software, which may allow an attacker to access confidential information. Specifically, it involves improper token expiration validation, potentially leading to sensitive information disclosure.

Recommendations For Acronis Agent versions prior to build 32047, update to a version that includes the fix for the improper token expiration validation issue, specifically build 32047 or later. As a temporary workaround, consider restricting access to sensitive information and ensuring that all authentication procedures are thoroughly reviewed and validated to minimize the risk of exploitation.