CVSS: 5.3EPSS: 0%CPEs: 9EXPL: 0CVE-2023-44205
https://notcve.org/view.php?id=CVE-2023-44205
Sensitive information disclosure due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979. Divulgación de información sensible por autorización inadecuada. Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Linux, Windows) antes de la compilación 35979. • https://security-advisory.acronis.com/advisories/SEC-4321 • CWE-639: Authorization Bypass Through User-Controlled Key •
CVSS: 6.5EPSS: 0%CPEs: 9EXPL: 0CVE-2023-44161
https://notcve.org/view.php?id=CVE-2023-44161
Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979. Manipulación de información confidencial debido a un Cross-Site Request Forgery (CSRF). Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Linux, Windows) antes de la build 35979. • https://security-advisory.acronis.com/advisories/SEC-4084 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 6.5EPSS: 0%CPEs: 9EXPL: 0CVE-2023-44160
https://notcve.org/view.php?id=CVE-2023-44160
Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979. Manipulación de información confidencial debido a un Cross-Site Request Forgery (CSRF). Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Linux, Windows) antes de la build 35979. • https://security-advisory.acronis.com/advisories/SEC-4083 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2023-44158
https://notcve.org/view.php?id=CVE-2023-44158
Sensitive information disclosure due to insufficient token field masking. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979. Divulgación de información confidencial debido a un enmascaramiento insuficiente del campo token. Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Linux, Windows) antes de la build 35979. • https://security-advisory.acronis.com/advisories/SEC-4071 • CWE-522: Insufficiently Protected Credentials •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2023-44157
https://notcve.org/view.php?id=CVE-2023-44157
Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect 15 (Windows) before build 35979. Escalada de privilegios locales debido a permisos de carpetas inseguros. Los siguientes productos se ven afectados: Acronis Cyber Protect 15 (Windows) anterior a la build 35979. • https://security-advisory.acronis.com/advisories/SEC-3956 • CWE-276: Incorrect Default Permissions •