📦

cyber_infrastructure

Vendor: acronis

Actively Exploited 1 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 3 Total Indexed

Avg. EPSS 31.26% Exploit Prob.

Latest CVE CVE-2023-45249 Jul 24

Security Vulnerability Index

Page 1 / 1

Critical Target

9.8 CVSS

CVE-2023-45249

Remote command execution due to use of default passwords. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.0.1-61, Acronis Cyber Infrastructure (ACI) before build 5.1.1-71, Acronis Cyber Infrastructure (ACI) before build 5.2.1-69, Acronis Cyber Infrastructure (ACI) before build 5.3.1-53, Acronis Cyber Infrastructure (ACI) before build 5.4.4-132.

EPSS: 93.48%

Severity: CRITICAL

Jul 24, 2024

5.5 CVSS

CVE-2023-2782

Sensitive information disclosure due to improper authorization. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.3.1-38.

EPSS: 0.05%

Severity: MEDIUM

May 18, 2023

7.5 CVSS

CVE-2023-2360

RCE

Sensitive information disclosure due to CORS misconfiguration. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.2.0-135.

EPSS: 0.26%

Severity: HIGH

Apr 28, 2023

Displaying 3 of 3 Total Entries

Total 1 Sections