Acronis CVEs & Vulnerabilities

10 CVEs affecting Acronis products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

cyber protect 10
CVE-2026-28722HIGH

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.

6 Mar 2026
7.3
CVSS
CVE-2026-28721HIGH

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.

6 Mar 2026
7.3
CVSS
CVE-2026-28718HIGH

Denial of service due to insufficient input validation in authentication logging. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.

6 Mar 2026
7.5
CVSS
CVE-2026-28717MEDIUM

Local privilege escalation due to improper directory permissions. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.

6 Mar 2026
5.0
CVSS
CVE-2026-28716MEDIUM

Information disclosure and manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.

6 Mar 2026
4.4
CVSS
CVE-2026-28715MEDIUM

Sensitive information disclosure due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.

6 Mar 2026
6.5
CVSS
CVE-2026-28712MEDIUM

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.

6 Mar 2026
6.3
CVSS
CVE-2026-28711MEDIUM

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect 17 (Windows) before build 41186.

6 Mar 2026
6.3
CVSS
CVE-2026-28710CRITICAL

Sensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.

6 Mar 2026
9.8
CVSS
CVE-2026-28709MEDIUM

Unauthorized resource manipulation due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.

6 Mar 2026
4.3
CVSS
← PrevPage 1 / 1Next →