CVE-2021-44203 : Security Advisory and Response

A stored cross-site scripting (XSS) vulnerability was identified in Acronis Cyber Protect 15, impacting both Windows and Linux systems.

Understanding CVE-2021-44203

Stored XSS vulnerability in Acronis Cyber Protect 15

What is CVE-2021-44203?

Stored cross-site scripting (XSS) was possible in protection plan details of Acronis Cyber Protect 15 before build 28035 for both Windows and Linux platforms.

The Impact of CVE-2021-44203

Attackers could exploit this vulnerability to execute malicious scripts within the context of a user's session.
It could lead to unauthorized access to sensitive data, cookie theft, or website defacement.

Technical Details of CVE-2021-44203

A detailed look into the technical aspects of the vulnerability

Vulnerability Description

The vulnerability allowed for stored cross-site scripting (XSS) attacks, enabling threat actors to inject and execute malicious scripts.

Affected Systems and Versions

Product: Acronis Cyber Protect 15
Platforms: Windows, Linux
Versions Affected: Before build 28035

Exploitation Mechanism

Exploitation involved injecting malicious scripts into protection plan details, which could then be executed within the application's context.

Mitigation and Prevention

Steps to address and prevent the vulnerability

Immediate Steps to Take

Update Acronis Cyber Protect 15 to build 28035 or later to mitigate the XSS vulnerability.
Educate users about the risks of executing unknown scripts or clicking on suspicious links.

Long-Term Security Practices

Regularly scan and monitor web applications for vulnerabilities, including XSS.
Implement input validation mechanisms to sanitize and filter user input to prevent XSS attacks.

Patching and Updates

Stay updated on security advisories from Acronis and apply patches promptly to address known vulnerabilities.