Known Vulnerabilities for products from Vinchin
Listed below are 8 of the newest known vulnerabilities associated with the vendor "Vinchin".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-60095 json | Not Provided | 2026-07-09 | 2026-07-09 | |
| CVE-2026-60094 json | Not Provided | 2026-07-09 | 2026-07-09 | |
| CVE-2024-22903 json | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the d... | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2024-22902 json | Vinchin Backup & Recovery v7.2 was discovered to be configured with default root credentials. | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2024-22901 json | Vinchin Backup & Recovery v7.2 was discovered to use default MYSQL credentials. | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2024-22900 json | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the s... | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2024-22899 json | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the s... | Not Provided | 2024-02-02 | 2026-07-09 |
| CVE-2023-45499 json | VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* was discovered to contain hardcoded credentials. | 9.8 - CRITICAL | 2023-10-27 | 2023-11-08 |
| CVE-2023-45498 json | VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* was discovered to contain a command injection vulnerability. | 9.8 - CRITICAL | 2023-10-27 | 2023-11-08 |
| CVE-2022-35866 json | This vulnerability allows remote attackers to bypass authentication on affected installations of Vinchin Backup and Recovery ... | 9.8 - CRITICAL | 2022-08-03 | 2024-01-26 |