CVE-2023-44213

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Acronis Cyber Protect Cloud Agent (Windows) versions before build 35739 Acronis Cyber Protect 16 (Windows) versions before build 37391 Acronis Agent (Windows) versions before build 35739

Description The issue is related to sensitive information disclosure due to excessive collection of system information. This may allow an attacker to gain unauthorized access to protected information.

Recommendations For Acronis Cyber Protect Cloud Agent (Windows) versions before build 35739, update to build 35739 or later. For Acronis Cyber Protect 16 (Windows) versions before build 37391, update to build 37391 or later. For Acronis Agent (Windows) versions before build 35739, update to build 35739 or later.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-359

Related Identifiers

BDU:2023-06473

CVE-2023-44213

Affected Products

Acronis Agent

Acronis Cyber Protect 16

Acronis Cyber Protect Cloud Agent

CVE-2023-44213

Weakness Enumeration

Related Identifiers

Affected Products

References · 9