SSRF Vulnerability in Acronis Cyber Backup Software
CVE-2020-16171
6.5MEDIUM
Summary
An SSRF vulnerability exists in Acronis Cyber Backup prior to version 12.5 Build 16342. The issue arises from certain API endpoints running on port 9877 under the /api/ams/ path. These endpoints accept a custom Shard header, whose value is misused in subsequent internal web requests. This flaw allows attackers to exploit the application to send requests to Acronis services running on localhost, potentially compromising sensitive services like NotificationService.
References
EPSS Score
6% chance of being exploited in the next 30 days.
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved