Improper Certification Validation in Acronis Agent and Cyber Protect by Acronis
CVE-2022-45458
4.2MEDIUM
Key Information:
- Vendor
Acronis
- Vendor
- CVE Published:
- 18 May 2023
What is CVE-2022-45458?
A vulnerability exists in Acronis Agent and Acronis Cyber Protect due to improper validation of certification which can lead to sensitive information disclosure and unauthorized manipulation of data. Applications affected include Acronis Agent for Windows, macOS, and Linux before build 29633, and Acronis Cyber Protect 15 for the same platforms before build 30984. Users are encouraged to update their software to mitigate the risks associated with this vulnerability.
Affected Version(s)
Acronis Agent Windows < 29633
Acronis Cyber Protect 15 Windows < 30984