CVE-2023-48684

Summary

Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 37758, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.

Affected Software

VendorProductVersion RangeStatus
AcronisAcronis Cyber Protect Cloud Agentunspecified < 37758affected
AcronisAcronis Cyber Protect 17unspecified < 41186affected

Weaknesses

  • CWE-862: CWE-862

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References