CVE-2024-55538

MEDIUM Year: 2024
CVSS v3 Score
4.0
Medium
Weakness Type
CWE-306
View all →

Vulnerability Description

Sensitive information disclosure due to missing authentication. The following products are affected: Acronis True Image (macOS) before build 41725, Acronis True Image (Windows) before build 41736.

Related Vulnerabilities

CVE-2024-38143

MEDIUM
CVSS:4.2(Medium)

Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability

CWE-3062024

CVE-2016-6549

MEDIUM
CVSS:4.3(Medium)

The Zizai Tech Nut device allows unauthenticated Bluetooth pairing, which enables unauthenticated connected applications to write data to the device name attribute.

CWE-3062016

CVE-2019-15282

MEDIUM
CVSS:4.3(Medium)

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an unauthenticated, remote attacker read tcpdump files generated on an affected devic...

CWE-3062019

CVE-2019-16003

MEDIUM
CVSS:4.3(Medium)

A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote attacker to download system log files from an affected device. The vulnerability is d...

CWE-3062019

CVE-2020-0052

MEDIUM
CVSS:4.3(Medium)

In smsSelected of AnswerFragment.java, there is a way to send an SMS from the lock screen due to a permissions bypass. This could lead to local escalation of privilege on the lock screen with no addit...

CWE-3062020

CVE-2020-26173

MEDIUM
CVSS:4.3(Medium)

An incorrect access control implementation in Tangro Business Workflow before 1.18.1 allows an attacker to download documents (PDF) by providing a valid document ID and token. No further authenticatio...

CWE-3062020