Excessive Vulnerability Binding in Acronis Agent and Cyber Protect Products
CVE-2023-41742
4.3MEDIUM
Key Information:
- Vendor
Acronis
- Vendor
- CVE Published:
- 31 August 2023
What is CVE-2023-41742?
This vulnerability arises from an excessive attack surface created by binding the affected products to an unrestricted IP address. This flawed configuration could allow unauthorized access and manipulation of data on these systems. Organizations utilizing Acronis Agent or Acronis Cyber Protect 15 should apply the latest updates to mitigate potential exploitation, as the earlier builds are susceptible to this security risk.
Affected Version(s)
Acronis Agent Linux < 30430
Acronis Cyber Protect 15 Linux < 35979