CVE-2023-44158
https://notcve.org/view.php?id=CVE-2023-44158
Sensitive information disclosure due to insufficient token field masking. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979. Divulgación de información confidencial debido a un enmascaramiento insuficiente del campo token. Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Linux, Windows) antes de la build 35979. • https://security-advisory.acronis.com/advisories/SEC-4071 • CWE-522: Insufficiently Protected Credentials •
CVE-2023-44157
https://notcve.org/view.php?id=CVE-2023-44157
Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect 15 (Windows) before build 35979. Escalada de privilegios locales debido a permisos de carpetas inseguros. Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Windows) anterior a la build 35979. • https://security-advisory.acronis.com/advisories/SEC-3956 • CWE-276: Incorrect Default Permissions •
CVE-2023-44155
https://notcve.org/view.php?id=CVE-2023-44155
Sensitive information leak through log files. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979. Se filtra información confidencial a través de archivos de log. Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Linux, Windows) antes de la build 35979. • https://security-advisory.acronis.com/advisories/SEC-3471 • CWE-532: Insertion of Sensitive Information into Log File •
CVE-2023-44154
https://notcve.org/view.php?id=CVE-2023-44154
Sensitive information disclosure and manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979. Divulgación y manipulación de información sensible por autorización indebida. Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Linux, Windows) antes de la build 35979. • https://security-advisory.acronis.com/advisories/SEC-2436 • CWE-639: Authorization Bypass Through User-Controlled Key •
CVE-2023-44153
https://notcve.org/view.php?id=CVE-2023-44153
Sensitive information disclosure due to cleartext storage of sensitive information in memory. The following products are affected: Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979. Divulgación de información confidencial debido al almacenamiento en texto claro de información confidencial en la memoria. Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Linux, macOS, Windows) antes de la build 35979. • https://security-advisory.acronis.com/advisories/SEC-1994 • CWE-312: Cleartext Storage of Sensitive Information CWE-316: Cleartext Storage of Sensitive Information in Memory •