CVE-2026-28715
MEDIUM WAF: Low
CVSS 6.5
Published: 2026-03-06
CWE-863
Sensitive information disclosure due to improper authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.
WAF Coverage Analysis
Incorrect Authorization
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| acronis | cyber_protect | up to 17.0.41186 |
References
- security-advisory.acronis.com (Vendor Advisory)