PT-2026-23577 · Acronis · Acronis Cyber Protect Cloud Agent
Airbus Seclab
+3
·
Published
2026-03-05
·
Updated
2026-03-13
·
CVE-2025-11790
CVSS v3.1
4.4
Medium
| Vector | AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) versions prior to build 41124
Description
Credentials are not deleted from the Acronis Agent after plan revocation. This can potentially lead to unauthorized access or misuse of the stored credentials.
Recommendations
Update Acronis Cyber Protect Cloud Agent to build 41124 or later.
Fix
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acronis Cyber Protect Cloud Agent