Acronis

target_in_scope

asset_identifier asset_type availability requirement confidentiality requirement eligible for bounty eligible for submission integrity requirement max_severity
*-api-*.acronis.com URL high high high critical
*.acronis.com URL low high low critical
1118448159 APPLE_STORE_APP_ID high low low critical
Acronis Cyber Backup for [iOS](https://apps.apple.com/app/acronis-cyber-backup/id1118448159)
978342143 APPLE_STORE_APP_ID high low low critical
Acronis True Image for [iOS](https://apps.apple.com/app/acronis-true-image-mobile/id978342143)
Acronis Agent DOWNLOADABLE_EXECUTABLES medium medium low critical
Acronis Agent is a client-side application for Acronis Cyber Cloud and Acronis Cyber Backup that incorporates backup and cyber protection mechanisms. You may download versions for all supported platforms from [here](https://mc-beta-cloud.acronis.com/download/u/baas/4.0/)
Acronis Cyber Backup DOWNLOADABLE_EXECUTABLES medium medium low critical
Acronis Cyber Backup is an on-premises backup solution designed for the business environment. You may request a trial by completing [registration](https://www.acronis.com/en-us/business/backup/trial/#/registration). Note that some vulnerabilities may already be fixed in the [beta](https://www.acronis.com/en-us/business/cyber-protect/trial/#/registration) version.
Acronis True Image DOWNLOADABLE_EXECUTABLES low medium medium critical
Acronis True Image is designed for protection of home computers. You may download a trial version [here](https://www.acronis.com/en-us/personal/computer-backup). Note that some vulnerabilities may already be fixed in the [beta](https://www.acronis.com/en-us/personal/computer-backup/beta/#registration) version.
Other Acronis Domains OTHER low low low medium
account.acronis.com URL high high high critical
Acronis Customer Portal
beta-baas.acronis.com URL high high high critical
Acronis Cyber Cloud beta environment. Request access by sending an email to security-bounty-accounts@acronis.com with `ACCOUNT-REQUEST:[username]` in subject. Make sure to provide your H1 username, not [email](https://docs.hackerone.com/hackers/hacker-email-alias.html). For instance, account request for user `acronis` should have the subject `ACCOUNT-REQUEST:acronis`
com.acronis.abc GOOGLE_PLAY_APP_ID medium low medium critical
Acronis Cyber Backup for [Android](https://play.google.com/store/apps/details?id=com.acronis.abc)
com.acronis.acronistrueimage GOOGLE_PLAY_APP_ID medium low medium critical
Acronis True Image for [Android](https://play.google.com/store/apps/details?id=com.acronis.acronistrueimage)

target_out_of_scope

asset_identifier asset_type availability requirement confidentiality requirement eligible for bounty eligible for submission integrity requirement max_severity