CVE-2021-32581

HIGH

Acronis Cyber Protect < 15.0.27009 - Improper Certificate Validation

Title source: llm
STIX 2.1

Description

Acronis True Image prior to 2021 Update 4 for Windows, Acronis True Image prior to 2021 Update 5 for Mac, Acronis Agent prior to build 26653, Acronis Cyber Protect prior to build 27009 did not implement SSL certificate validation.

References (3)

Core 3
Core References
Vendor Advisory x_refsource_misc
https://kb.acronis.com/content/68419
Vendor Advisory x_refsource_misc
https://kb.acronis.com/content/68413
Vendor Advisory x_refsource_misc
https://kb.acronis.com/content/68648

Scores

CVSS v3 8.1
EPSS 0.0015
EPSS Percentile 35.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Details

CWE
CWE-295
Status published
Products (3)
acronis/cyber_protect_cloud < 15.0.27009
acronis/cyber_protection_agent < 15.0.26653
acronis/true_image 2021 (9 CPE variants)
Published Aug 05, 2021
Tracked Since Feb 18, 2026