Excessive System Information Collection Leads to Sensitive Data Exposure in Acronis Products

Excessive System Information Collection Leads to Sensitive Data Exposure in Acronis Products

CVE-2023-41745 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Sensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 30991, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 35979.

Learn more about our Cis Benchmark Audit For Apple Macos.