CVE-2023-44154

CVSS v2.0

9.4

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:N

Name of the Vulnerable Software and Affected Versions Acronis Cyber Protect 15 versions before build 35979

Description The issue is related to sensitive information disclosure and manipulation due to improper authorization, potentially allowing a remote attacker to elevate their privileges.

Recommendations For Acronis Cyber Protect 15 versions before build 35979, update to a version that includes the necessary security fixes to address the improper authorization issue.

Fix

Incorrect Authorization

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863CWE-639

Related Identifiers

BDU:2023-06471

CVE-2023-44154

Affected Products

Acronis

Acronis Cyber Protect 15

CVE-2023-44154

Weakness Enumeration

Related Identifiers

Affected Products

References · 8