CVE-2023-41742

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 31, 2023

Updated: Sep 7, 2023

CWE ID 1327

CWE ID 668

Summary

CVE-2023-41742 is a vulnerability affecting Acronis Agent and Acronis Cyber Protect versions prior to builds 30430 and 35979 respectively. The issue stems from these products binding to an unrestricted IP address, resulting in an excessive attack surface. This flaw can potentially expose affected systems to remote exploitation. It is crucial for users to apply the necessary patches to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Acronis Cyber Protect
Acronis Agent

Affected Vendors

Acronis International

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/shI8n_
https://www.cve.org/CVERecord?id=CVE-2023-41742
https://nvd.nist.gov/vuln/detail/CVE-2023-41742

Back to Vulnerability Database