Sensitive information disclosure and manipulation due to improper certification validation. The following products are affected: Acronis Agent (Windows, macOS, Linux) before build 29633, Acronis Cyber Protect 15 (Windows, macOS, Linux) before build 30984.
The product does not validate, or incorrectly validates, a certificate.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Agent | Acronis | * | c22.05 (excluding) |
Cyber_protect | Acronis | * | 15 (excluding) |
Cyber_protect | Acronis | 15 (including) | 15 (including) |
Cyber_protect | Acronis | 15-update1 (including) | 15-update1 (including) |
Cyber_protect | Acronis | 15-update2 (including) | 15-update2 (including) |
Cyber_protect | Acronis | 15-update3 (including) | 15-update3 (including) |
Cyber_protect | Acronis | 15-update4 (including) | 15-update4 (including) |