CVE-2021-32579

Acronis True Image prior to 2021 Update 4 for Windows and Acronis True Image prior to 2021 Update 5 for macOS allowed an unauthenticated attacker (who has a local code execution ability) to tamper with the micro-service API.
References
Link Resource
https://kb.acronis.com/content/68413 Vendor Advisory
https://kb.acronis.com/content/68419 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:acronis:true_image:2021:-:*:*:*:macos:*:*
cpe:2.3:a:acronis:true_image:2021:-:*:*:*:windows:*:*
cpe:2.3:a:acronis:true_image:2021:update_1:*:*:*:macos:*:*
cpe:2.3:a:acronis:true_image:2021:update_1:*:*:*:windows:*:*
cpe:2.3:a:acronis:true_image:2021:update_2:*:*:*:macos:*:*
cpe:2.3:a:acronis:true_image:2021:update_2:*:*:*:windows:*:*
cpe:2.3:a:acronis:true_image:2021:update_3:*:*:*:macos:*:*
cpe:2.3:a:acronis:true_image:2021:update_3:*:*:*:windows:*:*
cpe:2.3:a:acronis:true_image:2021:update_4:*:*:*:macos:*:*

History

No history.

Information

Published : 2021-08-05 20:15

Updated : 2024-02-28 18:28


NVD link : CVE-2021-32579

Mitre link : CVE-2021-32579

CVE.ORG link : CVE-2021-32579


JSON object : View

Products Affected

acronis

  • true_image
CWE
CWE-287

Improper Authentication