CVE-2025-30410_CVE-2025-30410

9.8 / 10

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Sensitive data disclosure and manipulation due to missing authentication. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 39870, Acronis Cyber Protect 16 (Linux, macOS, Windows) before build 39938, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 41800.

AI Analysis

Sensitive data disclosure and manipulation vulnerability due to missing authentication in Acronis Cyber Protect products

Basic Information

ID CVE-2025-30410

Source Acronis

Published Feb 20, 2026 at 00:31

Affected Product

Vendor Acronis

Product Acronis Cyber Protect Cloud Agent

Version unspecified

Affected Versions Acronis Acronis Cyber Protect Cloud Agent unspecified
Acronis Acronis Cyber Protect 16 unspecified
Acronis Acronis Cyber Protect 15 unspecified

CWE Classification

CWE-306

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Acronis

Product Acronis Cyber Protect Cloud Agent, Acronis Cyber Protect 16, Acronis Cyber Protect 15

Version before build 39870, before build 39938, before build 41800

References

security-advisory.acronis.com /advisories/SEC-8641

{
    "lastseen": "",
    "description": "Sensitive data disclosure and manipulation due to missing authentication. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 39870, Acronis Cyber Protect 16 (Linux, macOS, Windows) before build 39938, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 41800.",
    "published": "2026-02-20T00:31:05.697Z",
    "modified": "2026-02-20T00:31:05.697Z",
    "type": "cve",
    "title": "CVE-2025-30410",
    "source": "Acronis",
    "references": "https://security-advisory.acronis.com/advisories/SEC-8641",
    "id": "CVE-2025-30410",
    "bulletinFamily": "",
    "cwe": [
        "CWE-306"
    ],
    "cvelist": null,
    "sourceData": "Acronis Acronis Cyber Protect Cloud Agent unspecified\nAcronis Acronis Cyber Protect 16 unspecified\nAcronis Acronis Cyber Protect 15 unspecified",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Acronis Cyber Protect Cloud Agent",
    "version": "unspecified",
    "vendor": "Acronis",
    "ai_description": "Sensitive data disclosure and manipulation vulnerability due to missing authentication in Acronis Cyber Protect products",
    "ai_severity": "Critical",
    "ai_vendor": "Acronis",
    "ai_product": "Acronis Cyber Protect Cloud Agent, Acronis Cyber Protect 16, Acronis Cyber Protect 15",
    "ai_version": "before build 39870, before build 39938, before build 41800",
    "ai_score": 9.8
}