CVE-2024-49386

MEDIUM

Acronis Cyber Files <9.0.0x24 - Info Disclosure

Title source: llm

Description

Sensitive information disclosure due to spell-jacking. The following products are affected: Acronis Cyber Files (Windows) before build 9.0.0x24.

References (1)

Scores

CVSS v3 5.7
EPSS 0.0016
EPSS Percentile 36.8%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Classification

CWE
CWE-359
Status published

Affected Products (1)

acronis/cyber_files < 9.0

Timeline

Published Oct 17, 2024
Tracked Since Feb 18, 2026