PT-2023-5783 · Acronis · Acronis Cyber Protect 15+1
Published
2023-09-27
·
Updated
2023-09-28
·
CVE-2023-44159
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Acronis Cyber Protect 15 versions prior to build 35979
Description
The issue is related to the storage of sensitive information in cleartext, which can lead to unauthorized access by a remote attacker. This allows the attacker to obtain sensitive information without proper authorization.
Recommendations
For Acronis Cyber Protect 15 versions prior to build 35979, update to a version that includes the necessary security fixes to prevent cleartext storage of sensitive information. As a temporary workaround, consider restricting access to sensitive data stored by Acronis Cyber Protect 15 until a patch is applied.
Fix
Cleartext Storage of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acronis
Acronis Cyber Protect 15