Acronis Cyber Protect 17
Approved changes feed: RSS · Atom
cpe:2.3:a:acronis:acronis_cyber_protect_17:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Acronis (d64000ef-8c61-5ba5-86d7-61c680cdcd75) |
|---|---|
| Product | Acronis Cyber Protect 17 (6ad8a834-7cfd-5efb-a33e-f20008c7e82c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-28727 |
vulnerable | 2026-06-03 15:18:08.607123 |
Details available
HIGH (7.8)
Local privilege escalation due to insecure Unix socket permissions. The following products are affected: Acronis Cyber Protect 17 (macOS) before build 41186, Acronis Cyber Protect Cloud Agent (macOS) before build 41124, Acronis True Image (macOS) before build 42902.
Published: 2026-03-05T23:45:20.331Z
Updated: 2026-04-02T17:05:54.369Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28726 |
vulnerable | 2026-06-03 15:18:08.606623 |
Details available
MEDIUM (4.3)
Sensitive information disclosure due to improper access control. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:57:23.487Z
Updated: 2026-03-06T19:33:44.772Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28725 |
vulnerable | 2026-06-03 15:18:08.606254 |
Details available
MEDIUM (5.5)
Sensitive information disclosure due to improper configuration of a headless browser. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:56:49.496Z
Updated: 2026-03-06T19:33:51.673Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28724 |
vulnerable | 2026-06-03 15:18:08.605707 |
Details available
MEDIUM (4.3)
Unauthorized data access due to insufficient access control validation. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:55:51.963Z
Updated: 2026-03-06T19:34:04.863Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28723 |
vulnerable | 2026-06-03 15:18:08.605336 |
Details available
MEDIUM (4.3)
Unauthorized report deletion due to insufficient access control. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:55:37.600Z
Updated: 2026-03-09T16:36:46.071Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28722 |
vulnerable | 2026-06-03 15:18:08.604961 |
Details available
HIGH (7.3)
Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.
Published: 2026-03-05T23:55:18.190Z
Updated: 2026-03-09T13:42:05.038Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28721 |
vulnerable | 2026-06-03 15:18:08.604578 |
Details available
HIGH (7.3)
Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.
Published: 2026-03-05T23:55:01.493Z
Updated: 2026-03-09T13:42:36.222Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28720 |
vulnerable | 2026-06-03 15:18:08.604069 |
Details available
MEDIUM (4.3)
Unauthorized modification of settings due to insufficient authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:54:43.281Z
Updated: 2026-03-09T16:37:05.902Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28719 |
vulnerable | 2026-06-03 15:18:08.603517 |
Details available
MEDIUM (4.3)
Unauthorized resource manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:54:24.475Z
Updated: 2026-03-09T16:37:35.513Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28718 |
vulnerable | 2026-06-03 15:18:08.603139 |
Details available
MEDIUM (5.3)
Denial of service due to insufficient input validation in authentication logging. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:54:05.522Z
Updated: 2026-03-09T16:37:56.483Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28717 |
vulnerable | 2026-06-03 15:18:08.602590 |
Details available
MEDIUM (5)
Local privilege escalation due to improper directory permissions. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.
Published: 2026-03-05T23:53:46.001Z
Updated: 2026-03-09T13:42:55.003Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28716 |
vulnerable | 2026-06-03 15:18:08.602210 |
Details available
MEDIUM (4.4)
Information disclosure and manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:52:29.601Z
Updated: 2026-03-09T17:06:28.655Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28715 |
vulnerable | 2026-06-03 15:18:08.601698 |
Details available
MEDIUM (6.5)
Sensitive information disclosure due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:52:09.573Z
Updated: 2026-03-09T17:19:34.034Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28714 |
vulnerable | 2026-06-03 15:18:08.601222 |
Details available
MEDIUM (4.8)
Unnecessary transmission of sensitive cryptographic material. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:51:47.409Z
Updated: 2026-03-09T17:19:55.828Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28713 |
vulnerable | 2026-06-03 15:18:08.599643 |
Details available
HIGH (7.1)
Default credentials set for local privileged user in Virtual Appliance. The following products are affected: Acronis Cyber Protect Cloud Agent (VMware) before build 36943, Acronis Cyber Protect 17 (VMware) before build 41186.
Published: 2026-03-05T23:51:30.830Z
Updated: 2026-03-07T04:55:22.751Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28712 |
vulnerable | 2026-06-03 15:18:08.596737 |
Details available
MEDIUM (6.3)
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.
Published: 2026-03-05T23:50:38.746Z
Updated: 2026-03-07T04:55:17.528Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28711 |
vulnerable | 2026-06-03 15:18:08.596346 |
Details available
MEDIUM (6.3)
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.
Published: 2026-03-05T23:50:16.116Z
Updated: 2026-03-07T04:55:19.021Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28710 |
vulnerable | 2026-06-03 15:18:08.595898 |
Details available
HIGH (8.1)
Sensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:48:48.088Z
Updated: 2026-03-07T04:55:20.943Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-28709 |
vulnerable | 2026-06-03 15:18:08.594388 |
Details available
MEDIUM (4.3)
Unauthorized resource manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
Published: 2026-03-05T23:48:07.935Z
Updated: 2026-03-06T19:34:34.657Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30415 |
vulnerable | 2026-06-03 15:00:28.266593 |
Details available
HIGH (7.5)
Denial of service due to improper handling of malformed input. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 40077, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.
Published: 2025-06-04T12:02:21.200Z
Updated: 2026-03-17T14:16:31.804Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30413 |
vulnerable | 2026-06-03 15:00:28.261672 |
Details available
MEDIUM (4.4)
Credentials are not deleted from Acronis Agent after plan revocation. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 40497, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.
Published: 2026-03-05T23:56:29.887Z
Updated: 2026-03-06T19:33:57.793Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30409 |
vulnerable | 2026-06-03 15:00:28.245437 |
Details available
MEDIUM (5.5)
Denial of service due to allocation of resources without limits. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904, Acronis Cyber Protect 17 (Windows) before build 41186.
Published: 2025-04-24T13:04:41.220Z
Updated: 2026-03-05T23:53:32.224Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-11791 |
vulnerable | 2026-06-03 14:58:43.071831 |
Details available
MEDIUM (5.5)
Sensitive information disclosure and manipulation due to insufficient authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186, Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 41124.
Published: 2026-03-05T23:46:27.697Z
Updated: 2026-03-06T19:34:47.346Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-48684 |
vulnerable | 2026-06-03 14:53:19.638111 |
Details available
HIGH (7.1)
Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 37758, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.
Published: 2024-04-29T15:48:03.752Z
Updated: 2026-03-05T23:53:12.757Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-45243 |
vulnerable | 2026-06-03 14:53:07.853158 |
Details available
MEDIUM (5.5)
Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 35739, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.
Published: 2023-10-05T21:57:49.413Z
Updated: 2026-03-05T23:49:17.744Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-45242 |
vulnerable | 2026-06-03 14:53:07.852720 |
Details available
MEDIUM (5.5)
Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 35739, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.
Published: 2023-10-05T21:57:35.406Z
Updated: 2026-03-05T23:52:56.366Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-44210 |
vulnerable | 2026-06-03 14:53:05.681292 |
Details available
HIGH (7.3)
Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 29258, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.
Published: 2023-10-04T19:53:12.772Z
Updated: 2026-03-05T23:49:51.866Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-44209 |
vulnerable | 2026-06-03 14:53:05.678993 |
Details available
MEDIUM (5.6)
Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 29051, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.
Published: 2023-10-04T19:44:00.895Z
Updated: 2026-03-05T23:49:38.183Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.