CVE-2024-49386
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-49386
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Sensitive information disclosure due to spell-jacking. The following products are affected: Acronis Cyber Files (Windows) before build 9.0.0x24.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
侵犯隐私
Source: NVD (National Vulnerability Database)
Vulnerability Title
Acronis Cyber Files 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Acronis Cyber Files是瑞士Acronis公司的一种安全的文件同步和共享解决方案。 Acronis Cyber Files 9.0.0x24之前版本存在安全漏洞,该漏洞源于拼写劫持而导致敏感信息泄露。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Acronis | Acronis Cyber Files | unspecified ~ 9.0.0x24 | - |
II. Public POCs for CVE-2024-49386
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-49386
请登录查看更多情报信息。
- https://security-advisory.acronis.com/advisories/SEC-5129vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2024-49386
Same Patch Batch · Acronis · 2024-10-17 · 5 CVEs total
| CVE-2024-49389 | Acronis Cyber Files 安全漏洞 | |
| CVE-2024-49390 | Acronis Cyber Files 代码问题漏洞 | |
| CVE-2024-49391 | Acronis Cyber Files 代码问题漏洞 | |
| CVE-2024-49392 | Acronis Cyber Files 跨站脚本漏洞 |
IV. Related Vulnerabilities
Same weakness: CWE-359
- CVE-2025-66172
Apache CloudStack: Any user can attach a volume in their VMs - CVE-2025-66171
Apache CloudStack: Any user can create a new VM from backups - CVE-2025-15623
Sparx Pro Cloud Server reveals sensitive information to an u - CVE-2026-3911
Org.keycloak.services.resources.admin.userresource: keycloak - CVE-2026-0102
Microsoft Edge (Chromium-based) Defense in Depth Vulnerabili
V. Comments for CVE-2024-49386
No comments yet