CVE-2024-34015

Summary

Sensitive information disclosure during file browsing due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM (Linux) before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM (Linux) before build 1.9.1.892.

Affected Software

VendorProductVersion RangeStatus
AcronisAcronis Backup plugin for cPanel & WHMunspecified < 1.8.3.818affected
AcronisAcronis Backup plugin for cPanel & WHMunspecified < 1.9.1.892affected

Weaknesses

  • CWE-61: CWE-61

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References