Lucene search

K
nvd[email protected]NVD:CVE-2023-41748
HistoryAug 31, 2023 - 6:15 p.m.

CVE-2023-41748

2023-08-3118:15:09
CWE-20
web.nvd.nist.gov
4
remote command execution
improper input validation
acronis cloud manager
windows
build 6.2.23089.203

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.002

Percentile

59.9%

Remote command execution due to improper input validation. The following products are affected: Acronis Cloud Manager (Windows) before build 6.2.23089.203.

Affected configurations

Nvd
Node
acroniscloud_managerRange<6.2.23089.203
AND
microsoftwindowsMatch-
VendorProductVersionCPE
acroniscloud_manager*cpe:2.3:a:acronis:cloud_manager:*:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.002

Percentile

59.9%

Related for NVD:CVE-2023-41748