Vulners
Lucene search
Vinchin Backup And Recovery 7.2 syncNtpTime Command Injection
🗓️ 26 Jan 2024 00:00:00Reported by Valentin LobsteinType 
packetstorm🔗 packetstormsecurity.com👁 334 Views
| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
 | Vinchin Backup And Recovery 7.2 syncNtpTime Command Injection Vulnerability | 29 Jan 202400:00 | – | zdt |
 | CVE-2024-22899 | 2 Feb 202403:22 | – | circl |
 | Vinchin Backup and Recovery Security Vulnerabilities | 2 Feb 202400:00 | – | cnnvd |
 | CVE-2024-22899 | 2 Feb 202400:00 | – | cve |
 | CVE-2024-22899 | 2 Feb 202400:00 | – | cvelist |
 | Exploit for Code Injection in Vinchin Vinchin_Backup_And_Recovery | 6 Nov 202309:24 | – | githubexploit |
 | CVE-2024-22899 | 2 Feb 202402:15 | – | nvd |
 | CVE-2024-22899 | 2 Feb 202402:15 | – | osv |
 | Remote code execution | 2 Feb 202402:15 | – | prion |
 | PT-2024-1553 · Vinchin · Vinchin Backup & Recovery | 11 Jan 202400:00 | – | ptsecurity |
10
`CVE ID: CVE-2024-22899
Title: Command Injection Vulnerability in Vinchin Backup and Recovery's syncNtpTime Function in Versions 7.2 and Earlier
Description:
A critical security vulnerability, identified as CVE-2024-22899, has been discovered in the `syncNtpTime` function of Vinchin Backup and Recovery software. This issue affects versions 7.2 and earlier. The function, part of the `SystemHandler.class.php` file, is designed for synchronizing system time with NTP servers but is prone to a command injection vulnerability due to improper handling of user input.
Function Analysis:
- The function is responsible for handling the `ntphost` parameter, which is expected to contain the address of the NTP server.
- The vulnerability stems from the direct concatenation of this parameter into a system command line, without adequate validation or sanitization.
- This design flaw allows an attacker to inject arbitrary commands into the `ntphost` parameter, which are then executed by the system.
Current Status:
As of now, there is no patch available for this vulnerability in versions 7.2 and earlier of Vinchin Backup and Recovery. Users of these versions are at risk of exploitation.
Recommendation:
It is advised for users of Vinchin Backup and Recovery versions 7.2 and earlier to remain alert and monitor for updates from Vinchin. Once a patch becomes available, it should be applied immediately to mitigate the risk posed by this vulnerability.
Conclusion:
The discovery of CVE-2024-22899 underscores the importance of rigorous input validation and sanitization in software development. This vulnerability poses a severe security risk, potentially leading to unauthorized system access or control.
Signed,Valentin Lobstein
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
26 Jan 2024 00:00Current
7.4High risk
Vulners AI Score7.4
EPSS0.21203