CVE-2021-44202

Stored cross-site scripting (XSS) was possible in activity details. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 28035
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:acronis:cyber_protect:*:*:*:*:*:*:*:*
cpe:2.3:a:acronis:cyber_protect:15:-:*:*:*:*:*:*
cpe:2.3:a:acronis:cyber_protect:15:update1:*:*:*:*:*:*
cpe:2.3:a:acronis:cyber_protect:15:update2:*:*:*:*:*:*
OR cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:30

Type Values Removed Values Added
References () https://security-advisory.acronis.com/advisories/SEC-3283 - Patch, Vendor Advisory () https://security-advisory.acronis.com/advisories/SEC-3283 - Patch, Vendor Advisory

Information

Published : 2021-11-29 19:15

Updated : 2024-11-21 06:30


NVD link : CVE-2021-44202

Mitre link : CVE-2021-44202

CVE.ORG link : CVE-2021-44202


JSON object : View

Products Affected

linux

  • linux_kernel

microsoft

  • windows

acronis

  • cyber_protect
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')