Search Results | AttackerKB

Show filters

Topics 96 Users 9,712

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

96 Total Results

Displaying 1-10 of 96

Attacker Value

Very High

CVE-2022-3405

Disclosure Date: May 03, 2023 (last updated October 08, 2023)

Code execution and sensitive information disclosure due to excessive privileges assigned to Acronis Agent. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 29486, Acronis Cyber Backup 12.5 (Windows, Linux) before build 16545.

Attack Vector: Adjacent Network Privileges: None User Interaction: None

1

Attacker Value

Very High

CVE-2022-30995

Disclosure Date: May 03, 2023 (last updated October 08, 2023)

Sensitive information disclosure due to improper authentication. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 29486, Acronis Cyber Backup 12.5 (Windows, Linux) before build 16545.

Attack Vector: Network Privileges: None User Interaction: None

1

Attacker Value

Unknown

CVE-2025-24831

Disclosure Date: January 31, 2025 (last updated February 01, 2025)

Local privilege escalation due to unquoted search path vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378.

0

Attacker Value

Unknown

CVE-2025-24830

Disclosure Date: January 31, 2025 (last updated February 01, 2025)

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378.

0

Attacker Value

Unknown

CVE-2025-24829

Disclosure Date: January 31, 2025 (last updated February 01, 2025)

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378.

0

Attacker Value

Unknown

CVE-2025-24828

Disclosure Date: January 31, 2025 (last updated February 01, 2025)

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378.

0

Attacker Value

Unknown

CVE-2025-24827

Disclosure Date: January 31, 2025 (last updated February 01, 2025)

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378.

0

Attacker Value

Unknown

CVE-2024-56414

Disclosure Date: January 02, 2025 (last updated January 03, 2025)

Web installer integrity check used weak hash algorithm. The following products are affected: Acronis Cyber Protect 16 (Windows) before build 39169.

0

Attacker Value

Unknown

CVE-2024-56413

Disclosure Date: January 02, 2025 (last updated January 03, 2025)

Missing session invalidation after user deletion. The following products are affected: Acronis Cyber Protect 16 (Windows) before build 39169.

0

Attacker Value

Unknown

CVE-2024-55543

Disclosure Date: January 02, 2025 (last updated January 03, 2025)

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect 16 (Windows) before build 39169.

0