CVE-2025-30413

EUVD-2025-208333
Credentials are not deleted from Acronis Agent after plan revocation. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 40497, Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.4 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
acroniscyber_protect
𝑥
< 17.0.41186
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://security-advisory.acronis.com/SEC-9386
https://security-advisory.acronis.com/advisories/SEC-8658