CVE-2023-44213

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Oct 5, 2023

Updated: Feb 27, 2024

CWE ID 200

Summary

CVE-2023-44213 is a sensitive information disclosure vulnerability affecting Acronis Cyber Protect Cloud Agent (Windows) versions prior to build 35739 and Acronis Cyber Protect 16 (Windows) builds below 37391. This issue arises due to excessive data collection, enabling attackers to gain access to sensitive system information. By exploiting this vulnerability, cybercriminals could potentially obtain valuable details about a system's configuration and setup, increasing the risk of unauthorized access or further attacks. Organizations using these affected Acronis products are advised to update as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Acronis Agent

Affected Vendors

Acronis International

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners