PT-2024-13624 · Acronis · Acronis Cyber Protect Cloud Agent+1

Published

2024-04-29

Updated

2025-01-02

CVE-2023-48683

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Acronis Cyber Protect Cloud Agent versions before build 37758 Acronis Cyber Protect 16 versions before build 39169

Description The issue is related to sensitive information disclosure and manipulation due to missing authorization.

Recommendations For Acronis Cyber Protect Cloud Agent versions before build 37758, update to build 37758 or later. For Acronis Cyber Protect 16 versions before build 39169, update to build 39169 or later.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2023-48683

Affected Products

Acronis Cyber Protect 16

Acronis Cyber Protect Cloud Agent

PT-2024-13624 · Acronis · Acronis Cyber Protect Cloud Agent+1

CVE-2023-48683

Weakness Enumeration

Related Identifiers

Affected Products

References · 7