CVE-2026-28714 Linux — Exploit & Vulnerability Details MEDIUM

CVE-2026-28714

MEDIUM CVSS 3.0: 4.8 EPSS 0.01%

Parameter	Value
CVSS	4.8 (MEDIUM)
Type	CWE-522 (Insufficiently Protected Credentials)
Vendor	Linux
Public PoC	No

Unnecessary transmission of sensitive cryptographic material. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before build 41186.

Attack Parameters

Attack Vector

Adjacent

Requires local network access

Attack Complexity

High

Difficult to exploit

Privileges Required

None

No privileges needed

User Interaction

Required

User action required

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

None

No data modification

Availability

None

No disruption

CVSS Vector v3.0

Weakness Type (CWE)

CWE-522 Insufficiently Protected Credentials

References 1

https://security-advisory.acronis.com/advisories/SEC-5383

security@acronis.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-40253

Linux

6.8

CVE-2026-41035

Linux

7.4

CVE-2026-40245

Linux

7.5

CVE-2026-6328

Linux

8.3

CVE-2026-39418

Linux

5.0

Menu

CVE-2026-28714

Attack Parameters

Impact Assessment

CVSS Vector v3.0

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-40253

CVE-2026-41035

CVE-2026-40245

CVE-2026-6328

CVE-2026-39418

CVE Details

Editor's Choice

Menu

CVE-2026-28714

Attack Parameters

Impact Assessment

CVSS Vector v3.0

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-40253

CVE-2026-41035

CVE-2026-40245

CVE-2026-6328

CVE-2026-39418

CVE Details

Editor's Choice

Stay informed on cybersecurity