Acronis Cyber Protect 17 vulnerabilities
28 known vulnerabilities affecting acronis/acronis_cyber_protect_17.
Total CVEs
28
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH9MEDIUM18
Vulnerabilities
Page 2 of 2
CVE-2026-28723P4MEDIUMCVSS 4.3≥ unspecified, < 411862026-03-06
CVE-2026-28723 [MEDIUM] CWE-863 CVE-2026-28723: Unauthorized report deletion due to insufficient access control. The following products are affected
Unauthorized report deletion due to insufficient access control. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
nvd
CVE-2026-28719P4MEDIUMCVSS 4.3≥ unspecified, < 411862026-03-06
CVE-2026-28719 [MEDIUM] CWE-863 CVE-2026-28719: Unauthorized resource manipulation due to improper authorization checks. The following products are
Unauthorized resource manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
nvd
CVE-2026-28709P4MEDIUMCVSS 4.3≥ unspecified, < 411862026-03-06
CVE-2026-28709 [MEDIUM] CWE-863 CVE-2026-28709: Unauthorized resource manipulation due to improper authorization checks. The following products are
Unauthorized resource manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
nvd
CVE-2026-28726P4MEDIUMCVSS 4.3≥ unspecified, < 411862026-03-06
CVE-2026-28726 [MEDIUM] CWE-863 CVE-2026-28726: Sensitive information disclosure due to improper access control. The following products are affected
Sensitive information disclosure due to improper access control. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
nvd
CVE-2026-28714P4MEDIUMCVSS 4.8≥ unspecified, < 411862026-03-06
CVE-2026-28714 [MEDIUM] CWE-522 CVE-2026-28714: Unnecessary transmission of sensitive cryptographic material. The following products are affected: A
Unnecessary transmission of sensitive cryptographic material. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
nvd
CVE-2025-30409P4MEDIUMCVSS 5.5≥ unspecified, < 411862025-04-24
CVE-2025-30409 [MEDIUM] CWE-770 CVE-2025-30409: Denial of service due to allocation of resources without limits. The following products are affected
Denial of service due to allocation of resources without limits. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904, Acronis Cyber Protect 17 (Windows) before build 41186.
nvd
CVE-2025-30413P4MEDIUMCVSS 4.4≥ unspecified, < 411862026-03-06
CVE-2025-30413 [MEDIUM] CWE-732 CVE-2025-30413: Credentials are not deleted from Acronis Agent after plan revocation. The following products are aff
Credentials are not deleted from Acronis Agent after plan revocation. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 40497, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.
nvd
CVE-2026-28716P4MEDIUMCVSS 4.4≥ unspecified, < 411862026-03-06
CVE-2026-28716 [MEDIUM] CWE-863 CVE-2026-28716: Information disclosure and manipulation due to improper authorization checks. The following products
Information disclosure and manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
nvd
← Previous2 / 2