Acronis Cyber Infrastructure vulnerabilities
3 known vulnerabilities affecting acronis/acronis_cyber_infrastructure.
Total CVEs
3
CISA KEV
1
actively exploited
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-45249P1CRITICALCVSS 9.8KEVPoC≥ unspecified, < 5.0.1-61≥ unspecified, < 5.1.1-71+3 more2024-07-24
CVE-2023-45249 [CRITICAL] CWE-1393 CVE-2023-45249: Remote command execution due to use of default passwords. The following products are affected: Acron
Remote command execution due to use of default passwords. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.0.1-61, Acronis Cyber Infrastructure (ACI) before build 5.1.1-71, Acronis Cyber Infrastructure (ACI) before build 5.2.1-69, Acronis Cyber Infrastructure (ACI) before build 5.3.1-53, Acronis Cyber Infrast
nvd
CVE-2023-2360P3HIGHCVSS 7.5≥ unspecified, < 5.2.0-1352023-04-28
CVE-2023-2360 [HIGH] CWE-942 CVE-2023-2360: Sensitive information disclosure due to CORS misconfiguration. The following products are affected:
Sensitive information disclosure due to CORS misconfiguration. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.2.0-135.
nvd
CVE-2023-2782P4MEDIUMCVSS 5.5≥ unspecified, < 5.3.1-382023-05-18
CVE-2023-2782 [MEDIUM] CWE-285 CVE-2023-2782: Sensitive information disclosure due to improper authorization. The following products are affected:
Sensitive information disclosure due to improper authorization. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.3.1-38.
nvd