Shodan
Vulnerabilities
Vulnerable Software
Acronis:  Security Vulnerabilities
CVE-2021-44203
Stored cross-site scripting (XSS) was possible in protection plan details. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 28035
CVSS Score
5.4
EPSS Score
0.005
Published
2021-11-29
CVE-2021-44198
DLL hijacking could lead to local privilege escalation. The following products are affected: Acronis Cyber Protect 15 (Windows) before build 28035
CVSS Score
7.8
EPSS Score
0.001
Published
2021-11-29
CVE-2021-44199
DLL hijacking could lead to denial of service. The following products are affected: Acronis Cyber Protect 15 (Windows) before build 28035, Acronis Agent (Windows) before build 27305, Acronis Cyber Protect Home Office (Windows) before build 39612
CVSS Score
5.5
EPSS Score
0.001
Published
2021-11-29
CVE-2021-38086
Acronis Cyber Protect 15 for Windows prior to build 27009 and Acronis Agent for Windows prior to build 26226 allowed local privilege escalation via DLL hijacking.
CVSS Score
7.8
EPSS Score
0.001
Published
2021-08-12
CVE-2021-38087
Reflected cross-site scripting (XSS) was possible on the login page in Acronis Cyber Protect 15 prior to build 27009.
CVSS Score
6.1
EPSS Score
0.005
Published
2021-08-12
CVE-2021-38088
Acronis Cyber Protect 15 for Windows prior to build 27009 allowed local privilege escalation via binary hijacking.
CVSS Score
7.8
EPSS Score
0.001
Published
2021-08-12
CVE-2021-32579
Acronis True Image prior to 2021 Update 4 for Windows and Acronis True Image prior to 2021 Update 5 for macOS allowed an unauthenticated attacker (who has a local code execution ability) to tamper with the micro-service API.
CVSS Score
7.8
EPSS Score
0.0
Published
2021-08-05
CVE-2021-32580
Acronis True Image prior to 2021 Update 4 for Windows allowed local privilege escalation due to DLL hijacking.
CVSS Score
7.8
EPSS Score
0.001
Published
2021-08-05
CVE-2021-32581
Acronis True Image prior to 2021 Update 4 for Windows, Acronis True Image prior to 2021 Update 5 for Mac, Acronis Agent prior to build 26653, Acronis Cyber Protect prior to build 27009 did not implement SSL certificate validation.
CVSS Score
8.1
EPSS Score
0.002
Published
2021-08-05
CVE-2021-32576
Acronis True Image prior to 2021 Update 4 for Windows allowed local privilege escalation due to improper soft link handling (issue 1 of 2).
CVSS Score
7.8
EPSS Score
0.001
Published
2021-08-05


Products
Pricing
Contact Us

Shodan ® - All rights reserved