Acronis Cyber Protect 17: Unauthorized Access to Sensitive Data

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.8

Acronis Cyber Protect 17: Unauthorized Access to Sensitive Data

CVE-2026-28710

Summary

Acronis Cyber Protect 17 versions before build 41186 on both Linux and Windows may allow unauthorized access to sensitive data. This issue is important because it could lead to sensitive information being stolen or manipulated. Acronis recommends updating to the latest version (build 41186 or later) to resolve this issue.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
acronis	cyber_protect	<= 17.0.41186	–

Original title

Sensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.

Original description

Sensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.

nvd CVSS3.0 8.1

Vulnerability type

CWE-1390

https://security-advisory.acronis.com/advisories/SEC-9137

Published: 6 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026