SSRF Vulnerability in Acronis Cyber Backup Software
CVE-2020-16171

6.5MEDIUM

Key Information:

Vendor
Acronis
Vendor
CVE Published:
21 September 2020

Summary

An SSRF vulnerability exists in Acronis Cyber Backup prior to version 12.5 Build 16342. The issue arises from certain API endpoints running on port 9877 under the /api/ams/ path. These endpoints accept a custom Shard header, whose value is misused in subsequent internal web requests. This flaw allows attackers to exploit the application to send requests to Acronis services running on localhost, potentially compromising sensitive services like NotificationService.

References

EPSS Score

6% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.