First published: Thu Aug 31 2023(Updated: )
Excessive attack surface due to binding to an unrestricted IP address. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 30430, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979.
Credit: security@acronis.com security@acronis.com
Affected Software | Affected Version | How to fix |
---|---|---|
Acronis Agent | <c22.09 | |
Acronis Cyber Protect | =15 | |
Acronis Cyber Protect | =15-update1 | |
Acronis Cyber Protect | =15-update2 | |
Acronis Cyber Protect | =15-update3 | |
Acronis Cyber Protect | =15-update4 | |
Acronis Cyber Protect | =15-update5 | |
Apple macOS | ||
Linux Linux kernel | ||
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-41742.
The severity of CVE-2023-41742 is high with a CVSS score of 7.5.
The following products are affected by CVE-2023-41742: Acronis Agent (Linux, macOS, Windows) before build 30430, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979.
CVE-2023-41742 exposes Acronis Agent to an excessive attack surface due to binding to an unrestricted IP address.
To fix CVE-2023-41742, update Acronis Agent (Linux, macOS, Windows) to build 30430 or later, and Acronis Cyber Protect 15 (Linux, macOS, Windows) to build 35979 or later.