Acronis Security Vulnerabilities (CVEs)
Track 57 security vulnerabilities affecting Acronis products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This CVE describes a local privilege escalation vulnerability in Acronis Cyber Protect 16 for Windows due to DLL hijacking. Attackers with local acces...
Jan 2, 2025This CVE describes a local privilege escalation vulnerability in Acronis Cyber Protect 16 for Windows due to DLL hijacking. Attackers with local acces...
Jan 2, 2025A stored cross-site scripting (XSS) vulnerability in Acronis Cyber Protect 16 allows attackers to inject malicious scripts via postMessage without pro...
Jan 2, 2025This CVE describes a local privilege escalation vulnerability in Acronis Cyber Files for Windows due to DLL hijacking. Attackers with local access can...
Oct 17, 2024This vulnerability allows local attackers to escalate privileges on Windows systems by exploiting insecure folder permissions in Acronis Cyber Files. ...
Oct 17, 2024CVE-2024-49388 is an authorization bypass vulnerability in Acronis Cyber Protect 16 that allows attackers to manipulate sensitive information without ...
Oct 15, 2024The archive-server service in Acronis Cyber Protect 16 binds to an unrestricted IP address, exposing unnecessary network attack surface. This affects ...
Oct 15, 2024The acep-collector service in affected Acronis Cyber Protect 16 versions binds to an unrestricted IP address, exposing unnecessary network attack surf...
Oct 15, 2024This vulnerability allows attackers to intercept sensitive information transmitted in cleartext by the acep-collector service in Acronis Cyber Protect...
Oct 15, 2024This CVE describes a local privilege escalation vulnerability in Acronis Snap Deploy for Windows due to DLL hijacking. Attackers with local access can...
Aug 29, 2024This CVE describes a local privilege escalation vulnerability in Acronis Snap Deploy for Windows due to DLL hijacking. Attackers with local access can...
Aug 29, 2024CVE-2023-45249 allows remote attackers to execute arbitrary commands on affected Acronis Cyber Infrastructure systems due to the use of default passwo...
Jul 24, 2024Acronis Agent in Cyber Protect 15 has excessive privileges that can lead to sensitive information disclosure. This affects Acronis Cyber Protect 15 in...
Jul 16, 2024This vulnerability allows unauthorized users to access and manipulate sensitive information in Acronis Cyber Protect Cloud Agent for Windows due to mi...
Dec 14, 2023This CVE describes a DLL hijacking vulnerability in Acronis Cyber Protect products for Windows that allows local attackers to escalate privileges. Att...
Dec 12, 2023This CVE describes a DLL hijacking vulnerability in Acronis Cyber Protect products on Windows that allows local attackers to escalate privileges. An a...
Oct 9, 2023This vulnerability allows unauthorized access to sensitive information and potential manipulation due to missing authorization checks in Acronis Cyber...
Oct 6, 2023This vulnerability allows unauthorized access to sensitive information and potential manipulation due to missing authorization checks in Acronis Cyber...
Oct 6, 2023This vulnerability allows unauthorized users to access and manipulate sensitive information in Acronis Cyber Protect products due to missing authoriza...
Oct 5, 2023This vulnerability allows local attackers to escalate privileges by exploiting improper handling of symbolic links in Acronis Agent. Attackers with lo...
Oct 4, 2023This vulnerability in Acronis Cyber Protect Home Office for Windows allows unauthorized users to access and manipulate sensitive information due to mi...
Oct 4, 2023CVE-2023-44206 is an authorization bypass vulnerability in Acronis Cyber Protect 15 that allows attackers to access and manipulate sensitive informati...
Sep 27, 2023This vulnerability allows attackers to bypass authentication mechanisms in Acronis Cyber Protect 15, potentially leading to unauthorized access, sensi...
Sep 27, 2023CVE-2023-44154 is an authorization bypass vulnerability in Acronis Cyber Protect 15 that allows unauthorized users to access and manipulate sensitive ...
Sep 27, 2023CVE-2023-44156 is a sensitive information disclosure vulnerability in Acronis Cyber Protect 15 caused by spell-jacking, which allows attackers to acce...
Sep 27, 2023Acronis Cyber Protect 15 versions before build 35979 insufficiently mask token fields, potentially exposing sensitive authentication or session tokens...
Sep 27, 2023This vulnerability allows local attackers to access sensitive information due to insecure folder permissions in Acronis Cyber Protect Home Office for ...
Sep 20, 2023This vulnerability in Acronis Agent and Cyber Protect for Windows allows attackers to access sensitive system information through excessive data colle...
Aug 31, 2023This vulnerability allows local attackers to escalate privileges during installation of Acronis Cyber Protect Home Office on Windows systems. Attacker...
Aug 31, 2023CVE-2023-41746 is a critical remote command execution vulnerability in Acronis Cloud Manager for Windows due to improper input validation. Attackers c...
Aug 31, 2023This vulnerability allows remote attackers to execute arbitrary commands on affected Acronis Cloud Manager installations due to improper input validat...
Aug 31, 2023This CVE describes a local privilege escalation vulnerability in Acronis products for Windows. It allows a local low-privileged user to gain SYSTEM-le...
Aug 31, 2023This CVE describes a local privilege escalation vulnerability in Acronis products for Windows. It allows a local attacker with low privileges to gain ...
Aug 31, 2023This vulnerability allows attackers to exploit Acronis Agent and Acronis Cyber Protect 15 by binding to unrestricted IP addresses, creating an excessi...
Aug 31, 2023This vulnerability allows unauthorized users to access and manipulate sensitive information in Acronis products due to improper authorization checks. ...
May 18, 2023This vulnerability allows attackers to perform man-in-the-middle attacks by exploiting weak TLS/SSL cipher suites in Acronis Cyber Protect 15. Affecte...
May 18, 2023This vulnerability allows attackers to bypass certificate validation in Acronis products, potentially leading to man-in-the-middle attacks, sensitive ...
May 18, 2023CVE-2022-4418 is a local privilege escalation vulnerability in Acronis Cyber Protect Home Office for Windows that allows attackers to load unsigned li...
May 18, 2023CVE-2022-3405 is a privilege escalation vulnerability in Acronis Agent that allows local attackers to execute arbitrary code and access sensitive info...
May 3, 2023CVE-2023-2360 is a Cross-Origin Resource Sharing (CORS) misconfiguration vulnerability in Acronis Cyber Infrastructure that allows attackers to steal ...
Apr 28, 2023This CVE describes a DLL hijacking vulnerability in Acronis Snap Deploy for Windows that allows local attackers to escalate privileges. Attackers can ...
Apr 27, 2023This vulnerability allows local users to access sensitive information due to insecure folder permissions in Acronis products on Windows. It affects Ac...
Feb 13, 2023CVE-2022-30993 allows attackers to intercept sensitive information transmitted in cleartext between Acronis Cyber Protect components. This affects Acr...
May 18, 2022This CVE describes a DLL hijacking vulnerability in Acronis Snap Deploy for Windows that allows local attackers to escalate privileges. Attackers can ...
May 16, 2022CVE-2022-0483 is a local privilege escalation vulnerability in Acronis VSS Doctor for Windows caused by insecure folder permissions. This allows authe...
Feb 11, 2022This vulnerability allows local attackers to escalate privileges on macOS systems by exploiting unrestricted loading of unsigned libraries in Acronis ...
Feb 4, 2022This CVE describes a local privilege escalation vulnerability in Acronis Windows products where child processes receive excessive permissions. An atta...
Feb 4, 2022This vulnerability allows local attackers to escalate privileges on Windows systems by exploiting improper access control checks on named pipes. Attac...
Feb 4, 2022This CVE describes a DLL hijacking vulnerability in Acronis Media Builder service that allows local attackers to escalate privileges on Windows system...
Feb 4, 2022Acronis Agent versions before build 27147 on Windows, Linux, and macOS can log sensitive information to system logs. This vulnerability allows attacke...
Nov 29, 2021Why Monitor Acronis Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 57+ known vulnerabilities affecting Acronis products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Acronis packages in under 60 seconds. No agents required - completely agentless scanning that works across Acronis deployments.
Free vulnerability database: Access detailed information about every Acronis CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Acronis CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
