PT-2023-5318 · Acronis · Acronis Cloud Manager
Putsi
·
Published
2023-08-31
·
Updated
2023-09-06
·
CVE-2023-41746
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Acronis Cloud Manager (Windows) versions before 6.2.23089.203
Description
The issue is related to remote command execution due to improper input validation. This allows a remote attacker to execute arbitrary commands.
Recommendations
For Acronis Cloud Manager (Windows) versions before 6.2.23089.203, update to a version after build 6.2.23089.203 to resolve the issue. As a temporary workaround, consider restricting access to the system to minimize the risk of exploitation.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acronis Cloud Manager