Known Vulnerabilities for Vinchin Backup And Recovery by Vinchin
Listed below are 8 of the newest known vulnerabilities associated with "Vinchin Backup And Recovery" by "Vinchin".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-60095 json | Vinchin Backup & Recovery through 9.0.0.86562 contains a stack buffer overflow vulnerability in the ModuleHandShake function ... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-60094 json | Vinchin Backup & Recovery through 9.0.0.86562 contains a heap buffer overflow vulnerability that allows unauthenticated remot... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2024-22903 json | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the d... | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2024-22902 json | Vinchin Backup & Recovery v7.2 was discovered to be configured with default root credentials. | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2024-22901 json | Vinchin Backup & Recovery v7.2 was discovered to use default MYSQL credentials. | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2024-22900 json | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the s... | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2024-22899 json | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the s... | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2023-45499 json | VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* was discovered to contain hardcoded credentials. | 9.8 - CRITICAL | 2023-10-27 | 2023-11-08 |
| CVE-2023-45498 json | VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* was discovered to contain a command injection vulnerability. | 9.8 - CRITICAL | 2023-10-27 | 2023-11-08 |
| CVE-2022-35866 json | This vulnerability allows remote attackers to bypass authentication on affected installations of Vinchin Backup and Recovery ... | 9.8 - CRITICAL | 2022-08-03 | 2024-01-26 |