CVE-2025-30416

Summary

Sensitive data disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 39938, Acronis Cyber Protect 15 (Linux, Windows) before build 41800.

Affected Software

VendorProductVersion RangeStatus
AcronisAcronis Cyber Protect 16unspecified < 39938affected
AcronisAcronis Cyber Protect 15unspecified < 41800affected

Weaknesses

  • CWE-862: CWE-862

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References