CVE-2025-30412CRITICAL 10.0EPSS p41.7%

CVE-2025-30412CVE-2025-30412

Description

Sensitive data disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 39938, Acronis Cyber Protect 15 (Linux, Windows) before build 41800.

Scoring

CVSS 3.010.0 (CRITICAL)
VectorCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS0.55% probability of exploitation · percentile 41.7% · 2026-06-18T12:00:27Z
Published2026-02-20
Last modified2026-03-12

Underlying weaknesses· 1

CWE-1390

References

  1. https://security-advisory.acronis.com/advisories/SEC-8598

1

TypeTargetConfidenceTier
WeaknessWeak Authenticationcwe-13900%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-30411
CVE
CVE-2025-30416
CVE
CVE-2025-30410
CVE
CVE-2026-28710
CVE
CVE-2025-61075
CVE
CVE-2026-42061
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.