CVE-2025-30410

CRITICAL 9.8

CVSS Score

9.8

EPSS Score

0.0%

EPSS Percentile

0th

Sensitive data disclosure and manipulation due to missing authentication. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 39870, Acronis Cyber Protect 16 (Linux, macOS, Windows) before build 39938, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build 41800.

CWE	CWE-306
Vendor	acronis
Product	acronis cyber protect cloud agent
Published	Feb 20, 2026
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for acronis acronis cyber protect cloud agent

Be the first to know when new critical vulnerabilities affecting acronis acronis cyber protect cloud agent are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Versions

Acronis / Acronis Cyber Protect Cloud Agent

unspecified < 39870

Acronis / Acronis Cyber Protect 16

unspecified < 39938

Acronis / Acronis Cyber Protect 15

unspecified < 41800

References

NVD ↗ CVE.org ↗ EPSS Data ↗

security-advisory.acronis.com: https://security-advisory.acronis.com/advisories/SEC-8641

Credits

Airbus SecLab (mailto:[email protected]) Quentin Liddell (mailto:[email protected]) Mattéo Ricordeau (mailto:[email protected]) Benoît Camredon (mailto:[email protected])