CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2023-44206
https://notcve.org/view.php?id=CVE-2023-44206
Sensitive information disclosure and manipulation due to improper authorization. • https://security-advisory.acronis.com/advisories/SEC-5839 • CWE-639: Authorization Bypass Through User-Controlled Key •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2023-44159
https://notcve.org/view.php?id=CVE-2023-44159
Sensitive information disclosure due to cleartext storage of sensitive information. • https://security-advisory.acronis.com/advisories/SEC-5787 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2023-44156
https://notcve.org/view.php?id=CVE-2023-44156
Sensitive information disclosure due to spell-jacking. • https://security-advisory.acronis.com/advisories/SEC-5124 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 9EXPL: 0CVE-2023-44205
https://notcve.org/view.php?id=CVE-2023-44205
Sensitive information disclosure due to improper authorization. • https://security-advisory.acronis.com/advisories/SEC-4321 • CWE-639: Authorization Bypass Through User-Controlled Key •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2023-44158
https://notcve.org/view.php?id=CVE-2023-44158
Sensitive information disclosure due to insufficient token field masking. • https://security-advisory.acronis.com/advisories/SEC-4071 • CWE-522: Insufficiently Protected Credentials •