CVE-2026-28713 VMWARE — Exploit & Vulnerability Details HIGH

CVE-2026-28713

HIGH CVSS 3.0: 7.1 EPSS 0.04%

Parameter	Value
CVSS	7.1 (HIGH)
Type	CWE-1392
Vendor	VMWARE
Public PoC	No

Default credentials set for local privileged user in Virtual Appliance. The following products are affected: Acronis Cyber Protect Cloud Agent (VMware) before build 36943, Acronis Cyber Protect 17 (VMware) before build 41186.

Attack Parameters

Attack Vector

Network

Атака возможна удалённо

Attack Complexity

High

Сложно эксплуатировать

Privileges Required

None

Права не нужны

User Interaction

Required

Нужно действие пользователя

Impact Assessment

Confidentiality

High

Полная утечка данных

Integrity

High

Полная модификация данных

Availability

Low

Частичное нарушение работы

CVSS Vector v3.0

Weakness Type (CWE)

CWE-1392

References 1

https://security-advisory.acronis.com/advisories/SEC-4168

security@acronis.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-22717

VMWARE

2.7

CVE-2026-22716

VMWARE

5.0

CVE-2026-22715

VMWARE

5.9

CVE-2026-22721

VMWARE

6.2

CVE-2026-22720

VMWARE

8.0

Menu

CVE-2026-28713

Attack Parameters

Impact Assessment

CVSS Vector v3.0

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-22717

CVE-2026-22716

CVE-2026-22715

CVE-2026-22721

CVE-2026-22720

CVE Details

Editor's Choice