Vulnerabilities > Vinchin > High

DATE CVE VULNERABILITY TITLE RISK
2024-02-02 CVE-2024-22899 Unspecified vulnerability in Vinchin Backup and Recovery
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function.
network
low complexity
vinchin
8.8
8.8
2024-02-02 CVE-2024-22900 Command Injection vulnerability in Vinchin Backup and Recovery
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo function.
network
low complexity
vinchin CWE-77
8.8
8.8
2024-02-02 CVE-2024-22903 Command Injection vulnerability in Vinchin Backup and Recovery
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the deleteUpdateAPK function.
network
low complexity
vinchin CWE-77
8.8
8.8