CVE-2025-11791 Linux — Exploit & Vulnerability Details MEDIUM

CVE-2025-11791

MEDIUM CVSS 3.0: 5.5 EPSS 0.01%

Parameter	Value
CVSS	5.5 (MEDIUM)
Type	CWE-862 (Missing Authorization (Отсутствие авторизации))
Vendor	Linux
Public PoC	No

Sensitive information disclosure and manipulation due to insufficient authorization checks. The following products are affected: Acronis Cyber Protect 17 (Linux, macOS, Windows) before build 41186, Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 41124.

Attack Parameters

Attack Vector

Local

Нужен локальный доступ

Attack Complexity

Low

Легко эксплуатировать

Privileges Required

Low

Нужны базовые права

User Interaction

None

Не нужно действие пользователя

Impact Assessment

Confidentiality

None

Нет утечки данных

Integrity

High

Полная модификация данных

Availability

None

Нет нарушения работы

CVSS Vector v3.0

Weakness Type (CWE)

CWE-862 Missing Authorization (Отсутствие авторизации)

References 1

https://security-advisory.acronis.com/advisories/SEC-9405

security@acronis.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-28726

Linux

4.3

CVE-2026-28725

Linux

5.5

CVE-2026-28724

Linux

4.3

CVE-2026-28723

Linux

4.3

CVE-2026-28720

Linux

4.3

Menu

CVE-2025-11791

Attack Parameters

Impact Assessment

CVSS Vector v3.0

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-28726

CVE-2026-28725

CVE-2026-28724

CVE-2026-28723

CVE-2026-28720

CVE Details

Editor's Choice