HIGH 8.8 Published on 2017-06-21

CVE-2017-3219

Acronis True Image up to and including version 2017 Build 8053 performs software updates using HTTP. Downloaded updates are only verified using a server-provided MD5 hash.

CVSS v3 CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS 0.0% percentile 8.6%

Affected tracked apps

Acronis Mobile

com.acronis.trueImage

1 open

Vulnerable CPE configurations

Vendor	Product	Platform	Versions	CPE 2.3 URI
acronis	true_image	iOS	≤2017	cpe:2.3:a:acronis:true_image::::::::

View on NVD ↗