CVE-2024-55538

Description

Sensitive information disclosure due to missing authentication. The following products are affected: Acronis True Image (macOS) before build 41725, Acronis True Image (Windows) before build 41736, Acronis True Image OEM (macOS) before build 42571, Acronis True Image OEM (Windows) before build 42575.

CVSS breakdown

CVSS 3.0

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Affected products

Acronis / Acronis True Imageunspecified – 41725
Acronis / Acronis True Imageunspecified – 41736
Acronis / Acronis True Image OEMunspecified – 42571
Acronis / Acronis True Image OEMunspecified – 42575

References

VENDOR_ADVISORYhttps://security-advisory.acronis.com/advisories/SEC-2209