Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-49392

Stored cross-site scripting (XSS) vulnerability on enrollment invitation page. The following products are affected: Acronis Cyber Files (Windows) before build 9.0.0x24.

Published

2024-10-17T10:15:04.383

Last Modified

2024-10-18T20:10:05.850

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.8 (MEDIUM)

Weaknesses

Type: Primary
CWE-79

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	acronis	cyber_files	< 9.0	Yes

References

https://security-advisory.acronis.com/advisories/SEC-7554 Vendor Advisory ([email protected])