CVE-2023-44156

Name of the Vulnerable Software and Affected Versions Acronis Cyber Protect 15 versions before build 35979

Description The issue is related to sensitive information disclosure due to spell-jacking, which may allow an attacker to gain unauthorized access to protected information. The vulnerability is associated with insufficient protection of service data.

Recommendations For Acronis Cyber Protect 15 versions before build 35979, update to a version after build 35979 to resolve the issue. As a temporary workaround, consider restricting access to sensitive information until a patch is applied.