Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Backup And Recovery Security Vulnerabilities

cve
cve

CVE-2024-22901

Vinchin Backup & Recovery v7.2 was discovered to use default MYSQL...

9.8CVSS

9.4AI Score

0.001EPSS

2024-02-02 02:15 AM
18
cve
cve

CVE-2024-22900

Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo...

8.8CVSS

9AI Score

0.002EPSS

2024-02-02 02:15 AM
17
cve
cve

CVE-2024-22899

Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime...

8.8CVSS

9AI Score

0.002EPSS

2024-02-02 02:15 AM
39
cve
cve

CVE-2024-22903

Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the deleteUpdateAPK...

8.8CVSS

9AI Score

0.002EPSS

2024-02-02 02:15 AM
12
cve
cve

CVE-2024-22902

Vinchin Backup & Recovery v7.2 was discovered to be configured with default root...

9.8CVSS

9.4AI Score

0.001EPSS

2024-02-02 02:15 AM
17
cve
cve

CVE-2023-45498

VinChin Backup & Recovery v5.0., v6.0., v6.7., and v7.0. was discovered to contain a command injection...

9.8CVSS

9.8AI Score

0.003EPSS

2023-10-27 04:15 AM
33
cve
cve

CVE-2023-45499

VinChin Backup & Recovery v5.0., v6.0., v6.7., and v7.0. was discovered to contain hardcoded...

9.8CVSS

9.5AI Score

0.001EPSS

2023-10-27 04:15 AM
27
cve
cve

CVE-2022-35866

This vulnerability allows remote attackers to bypass authentication on affected installations of Vinchin Backup and Recovery 6.5.0.17561. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the MySQL server. The server uses a...

9.8CVSS

9.6AI Score

0.01EPSS

2022-08-03 04:15 PM
27
6
cve
cve

CVE-2021-26932

An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one is reported to the backend driver, and the backend driver then.....

5.5CVSS

6AI Score

0.0004EPSS

2021-02-17 02:15 AM
236
11
cve
cve

CVE-2020-15850

Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow local users to access the Nakivo Director web interface and gain root privileges. This occurs because the database containing the users of the web application and the password-recovery secret value is.....

7.8CVSS

7.5AI Score

0.0004EPSS

2020-09-24 09:15 PM
25
cve
cve

CVE-2011-3477

GEAR Software CD DVD Filter driver (aka GEARAspiWDM.sys), as used in Symantec Backup Exec System Recovery 8.5 and BESR 2010, Symantec System Recovery 2011, Norton 360, and Norton Ghost, allows local users to cause a denial of service (system crash) via unspecified...

5.5CVSS

5.2AI Score

0.0004EPSS

2018-02-19 07:29 PM
17